Out-of-Bounds Memory Access Vulnerability in HHVM's strrpos and strripos Functions

Out-of-Bounds Memory Access Vulnerability in HHVM's strrpos and strripos Functions

CVE-2019-3561 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Insufficient boundary checks for the strrpos and strripos functions allow access to out-of-bounds memory. This affects all supported versions of HHVM (4.0.3, 3.30.4, and 3.27.7 and below).

Learn more about our Web Application Penetration Testing UK.