Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
PHP Use After Free Vulnerability - CVE-2020-7068 - Vulnerability Database
PHP

PHP Use After Free Vulnerability - CVE-2020-7068

Low
Reference: CVE-2020-7068
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2020-7068
Title: PHP Use After Free Vulnerability
Overview:

In PHP versions 7.2.x below 7.2.33 7.3.x below 7.3.21 and 7.4.x below 7.4.9 while processing PHAR files using phar extension phar_parse_zipfile could be tricked into accessing freed memory which could lead to a crash or information disclosure.