← Back to CVEs

CVE-2018-6345

CRITICAL

9.8

Description

The function number_format is vulnerable to a heap overflow issue when its second argument ($dec_points) is excessively large. The internal implementation of the function will cause a string to be created with an invalid length, which can then interact poorly with other functions. This affects all supported versions of HHVM (3.30.1 and 3.27.5 and below).

CVE Details

CVSS v3.1 Score9.8

SeverityCRITICAL

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredNONE

User InteractionNONE

Published1/15/2019

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

facebook:hhvm

Weaknesses (CWE)

CWE-122CWE-787

References

https://github.com/facebook/hhvm/commit/190ffdf6c8b1ec443be202c7d69e63a7e3da25e3(cve-assign@fb.com)

https://hhvm.com/blog/2019/01/14/hhvm-3.30.2.html(cve-assign@fb.com)

https://github.com/facebook/hhvm/commit/190ffdf6c8b1ec443be202c7d69e63a7e3da25e3(af854a3a-2127-422b-91ae-364da2661108)

https://hhvm.com/blog/2019/01/14/hhvm-3.30.2.html(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.