Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2019-9638 - Vulnerability Database
PHP

PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability - CVE-2019-9638

High
Reference: CVE-2019-9638
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-9638
Title: PHP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability
Overview:

An issue was discovered in the EXIF component in PHP before 7.1.27 7.2.x before 7.2.16 and 7.3.x before 7.3.3. There is an uninitialized read in exif_process_IFD_in_MAKERNOTE because of mishandling the maker_note-gtoffset relationship to value_len.