VYPR
Unrated severityNVD Advisory· Published Feb 10, 2020· Updated Sep 17, 2024

global buffer-overflow in mbfl_filt_conv_big5_wchar

CVE-2020-7060

Description

When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbfl_filt_conv_big5_wchar to read past the allocated buffer. This may lead to information disclosure or crash.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

61

Patches

Vulnerability mechanics

References

14

News mentions

0

No linked articles in our index yet.