CVE-2020-1888

Insufficient boundary checks when decoding JSON in handleBackslash reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://github.com/facebook/hhvm/commit/b3679121bb3c7017ff04b4c08402ffff5cf59b13	Patch
https://hhvm.com/blog/2020/02/20/security-update.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm:4.39.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.40.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.41.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.42.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.43.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.44.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.45.0:::::::*

History

No history.

Information

Published : 2020-03-03 15:15

Updated : 2020-03-05 20:23

NVD link : CVE-2020-1888

Mitre link : CVE-2020-1888

CVE.ORG link : CVE-2020-1888

JSON object : View

Products Affected

facebook

hhvm

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2020-1888", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-03-03T15:15:11.883", "references": [{"url": "https://github.com/facebook/hhvm/commit/b3679121bb3c7017ff04b4c08402ffff5cf59b13", "tags": ["Patch"], "source": "cve-assign@fb.com"}, {"url": "https://hhvm.com/blog/2020/02/20/security-update.html", "tags": ["Vendor Advisory"], "source": "cve-assign@fb.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}, {"type": "Secondary", "source": "cve-assign@fb.com", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "Insufficient boundary checks when decoding JSON in handleBackslash reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7."}, {"lang": "es", "value": "Comprobaciones de l\u00edmites insuficientes cuando se decodifica JSON en handleBackslash lee la memoria fuera de l\u00edmites, conllevando potencialmente a una DOS. Este problema afecta a HHVM versiones 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versiones entre 4.33.0 y 4.38.0 (inclusive), versiones entre 4.9.0 y 4.32.0 (inclusive), y versiones anteriores a 4.8.7."}], "lastModified": "2020-03-05T20:23:33.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1FC3F1B-FB6A-4EC4-8878-0C55652434F7", "versionEndExcluding": "4.8.7"}, {"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D25B1929-CF0F-4D0F-9268-6022762717FE", "versionEndIncluding": "4.32.0", "versionStartIncluding": "4.9.0"}, {"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87A4049D-2F34-4F15-83B4-0B620EB43500", "versionEndIncluding": "4.38.0", "versionStartIncluding": "4.33.0"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.39.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43688064-E2D3-461C-982C-A9702623A41F"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.40.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF8C8ED9-02DD-4F9C-9B76-751FACE3ED48"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.41.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94FEC1E6-58FD-47C1-B05E-80BAE3840532"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.42.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "503ED662-BA21-469D-9FDC-73622786B29D"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.43.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6F55273-3CA7-4432-9D43-951EC943E2B4"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.44.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89BDE742-DE38-444B-9B40-6F14D6047B14"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.45.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90646244-2B6C-402F-9835-9D540DE1EBC9"}], "operator": "OR"}]}], "sourceIdentifier": "cve-assign@fb.com"}