CVE-2019-11043 - PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability
Project:PHP
Product:FastCGI Process Manager (FPM)
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability
Description
In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-11043