CVE-2020-1893

Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://github.com/facebook/hhvm/commit/bd586671a3c22eb2f07e55f11b3ce64e1f7961e7	Patch
https://hhvm.com/blog/2020/02/20/security-update.html	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm::::::::
	cpe:2.3:a:facebook:hhvm:4.39.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.40.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.41.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.42.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.43.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.44.0:::::::*
	cpe:2.3:a:facebook:hhvm:4.45.0:::::::*

History

No history.

Information

Published : 2020-03-03 15:15

Updated : 2020-03-05 20:36

NVD link : CVE-2020-1893

Mitre link : CVE-2020-1893

CVE.ORG link : CVE-2020-1893

JSON object : View

Products Affected

facebook

hhvm

CWE

CWE-125

Out-of-bounds Read

{"id": "CVE-2020-1893", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-03-03T15:15:12.057", "references": [{"url": "https://github.com/facebook/hhvm/commit/bd586671a3c22eb2f07e55f11b3ce64e1f7961e7", "tags": ["Patch"], "source": "cve-assign@fb.com"}, {"url": "https://hhvm.com/blog/2020/02/20/security-update.html", "tags": ["Vendor Advisory"], "source": "cve-assign@fb.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-125"}]}, {"type": "Secondary", "source": "cve-assign@fb.com", "description": [{"lang": "en", "value": "CWE-125"}]}], "descriptions": [{"lang": "en", "value": "Insufficient boundary checks when decoding JSON in TryParse reads out of bounds memory, potentially leading to DOS. This issue affects HHVM 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versions between 4.33.0 and 4.38.0 (inclusive), versions between 4.9.0 and 4.32.0 (inclusive), and versions prior to 4.8.7."}, {"lang": "es", "value": "Comprobaciones de l\u00edmites insuficientes cuando se decodifica JSON en TryParse lee la memoria fuera de l\u00edmites, conllevando potencialmente a una DOS. Este problema afecta a HHVM versiones 4.45.0, 4.44.0, 4.43.0, 4.42.0, 4.41.0, 4.40.0, 4.39.0, versiones entre 4.33.0 y 4.38.0 (inclusive), y versiones entre 4.9.0 y 4.32.0 (inclusive), y versiones anteriores a 4.8.7."}], "lastModified": "2020-03-05T20:36:46.163", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D1FC3F1B-FB6A-4EC4-8878-0C55652434F7", "versionEndExcluding": "4.8.7"}, {"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D25B1929-CF0F-4D0F-9268-6022762717FE", "versionEndIncluding": "4.32.0", "versionStartIncluding": "4.9.0"}, {"criteria": "cpe:2.3:a:facebook:hhvm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87A4049D-2F34-4F15-83B4-0B620EB43500", "versionEndIncluding": "4.38.0", "versionStartIncluding": "4.33.0"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.39.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43688064-E2D3-461C-982C-A9702623A41F"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.40.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF8C8ED9-02DD-4F9C-9B76-751FACE3ED48"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.41.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94FEC1E6-58FD-47C1-B05E-80BAE3840532"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.42.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "503ED662-BA21-469D-9FDC-73622786B29D"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.43.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F6F55273-3CA7-4432-9D43-951EC943E2B4"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.44.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89BDE742-DE38-444B-9B40-6F14D6047B14"}, {"criteria": "cpe:2.3:a:facebook:hhvm:4.45.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "90646244-2B6C-402F-9835-9D540DE1EBC9"}], "operator": "OR"}]}], "sourceIdentifier": "cve-assign@fb.com"}