CVE-2019-11035
Heap over-read in PHP EXIF extensionWhen processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function. This may lead to information disclosure or crash.
We have discovered 239,735 live websites that are affected by CVE-2019-11035.
Contact us to get more info
Affected Software
| |
---|
Product | PHP |
Category | Programming Languages |
Vulnerable Versions | - from 7.1 before 7.1.28
- from 7.2 before 7.2.17
- from 7.3 before 7.3.4
|
Total Vulnerable Versions | 507 |
Vulnerable Domains | 239,735 live websites (1.98% of PHP install base) |
Common Weakness Enumeration
CWE-125 Out-of-bounds Read
Distribution by Website Rank
The diagram provides a graphic representation of the correlation between the occurrence of CVE-2019-11035 and the relative popularity of websites