Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ibmIBM9F602B8687BE73575110604BDF9E8B6065C08D24F910A0D708DFB01206F71AC0
HistoryMar 03, 2020 - 2:43 a.m.

Security Bulletin: API Connect's Developer Portal is impacted by vulnerabilities in PHP

2020-03-0302:43:43
www.ibm.com
15

EPSS

0.714

Percentile

98.1%

JSON

Summary

IBM API Connect has addressed the following vulnerability.

Vulnerability Details

CVEID:CVE-2019-11035
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by heap-based buffer overflow in the exif_iif_add_value function in the EXIF extension. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition.
CVSS Base score: 7.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/159896 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)

CVEID:CVE-2019-9022
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by a flaw in the dns_get_record function. By sending a specially-crafted DNS response, a remote attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/157969 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2019-11042
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by a heap-based buffer overflow in the exif_read_data function. By persuading a victim to open a specially-crafted content, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition on the system.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/167296 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)

CVEID:CVE-2019-9024
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds read in xmlrpc_decode() function. By using specially-crafted input, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/157967 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)

CVEID:CVE-2018-20783
**DESCRIPTION:**GAIN Electronic SAGA1-L8B could allow a remote attacker to bypass security restrictions, caused by an improper access control flaw. An attacker could exploit this vulnerability to force-pair the device.
CVSS Base score: 7.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/151856 for the current score.
CVSS Vector: (CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-9640
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by an invalid read flaw in the exif_process_SOFn method. An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/158120 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-9023
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by a number of heap-based buffer over-read instances in mbstring regular expression functions. By sending a specially crafted argument, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/157968 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-11036
**DESCRIPTION:**PHP EXIF extension could allow a remote attacker to obtain sensitive information, caused by a heap-based buffer overflow in the exif_process_IFD_TAG function. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition on the system.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/160574 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)

CVEID:CVE-2019-11040
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by a heap-based buffer overflow in the exif_read_data function. By persuading a victim to open a specially-crafted content, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition on the system.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/161868 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)

CVEID:CVE-2019-9639
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by an uninitialized read flaw in the exif_process_IFD_in_MAKERNOTE method. An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/158119 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-11039
**DESCRIPTION:**PHP is vulnerable to a denial of service, caused by an out-of-bounds read in the _php_iconv_mime_decode function in iconv.c. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause the application to crash or obtain sensitive information.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/161867 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)

CVEID:CVE-2019-11038
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by an uninitialized read in the gdImageCreateFromXbm function. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/161866 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

CVEID:CVE-2019-9638
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by an uninitialized read flaw in the exif_process_IFD_in_MAKERNOTE method. An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/158118 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-11041
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by a heap-based buffer overflow in the exif_read_data function. By persuading a victim to open specially-crafted content, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition on the system.
CVSS Base score: 8.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/167295 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)

CVEID:CVE-2019-11034
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by heap-based buffer overflow in the exif_process_IFD_TAG function in the EXIF extension. By persuading a victim to open a specially-crafted file, an attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service condition.
CVSS Base score: 7.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/159895 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H)

CVEID:CVE-2019-9021
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by a heap-based buffer over-read in PHAR reading functions in the PHAR extension. By sending a specially crafted argument, an attacker could exploit this vulnerability to read allocated or unallocated memory past the actual data and execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/157974 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-9020
**DESCRIPTION:**PHP could allow a remote attacker to execute arbitrary code on the system, caused by a heap out of bounds read in the function xmlrpc_decode(). An attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/157975 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

CVEID:CVE-2019-9637
**DESCRIPTION:**PHP could allow a remote attacker to obtain sensitive information, caused by a flaw in the implementation of rename function. By sending a specially-crafted request, an attacker could exploit this vulnerability to obtain sensitive information.
CVSS Base score: 5.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/158117 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

CVEID:CVE-2019-6977
**DESCRIPTION:**LibGD is vulnerable to a heap-based buffer overflow, caused by improper bounds checking by gd_color_match.c. By persuading a victim to open a specially-crafted image data, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.
CVSS Base score: 7.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/156217 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)

Affected Products and Versions

Affected Product(s) Version(s)
API Connect IBM API Connect V2018.4.1.0-2018.4.1.9iFix1

Remediation/Fixes

Affected releases Fixed in VRMF APAR Remediation / First Fix
IBM API Connect V2018.1-2018.4.1.9iFix1 v2018.4.1.10

LI81270

|

Addressed in IBM API Connect v2018.4.1.10.

Developer Portal is impacted.

Follow this link and find the “Portal” package appropriate for your installation.

http://www.ibm.com/support/fixcentral/swg/quickorder

Workarounds and Mitigations

None

Related

redhat 3
oraclelinux 1
nessus 74
osv 11
rocky 1
almalinux 1
openvas 58
debian 7
suse 7
ibm 5
ubuntu 11
fedora 2
amazon 3
f5 3
redhatcve 1
debiancve 1
freebsd 1
prion 1
alpinelinux 1
altlinux 3
cvelist 1
nvd 1
cve 1
ubuntucve 1
redhat
redhat
(RHSA-2020:1624) Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
(RHSA-2019:3299) Critical: rh-php72-php security update
2019-11-01 12:22:19
(RHSA-2019:2519) Moderate: rh-php71-php security, bug fix, and enhancement update
2019-08-19 08:09:18
oraclelinux
oraclelinux
php:7.2 security, bug fix, and enhancement update
2020-05-05 00:00:00
nessus
nessus
Oracle Linux 8 : php:7.2 (ELSA-2020-1624)
2023-09-07 00:00:00
Rocky Linux 8 : php:7.2 (RLSA-2020:1624)
2023-11-06 00:00:00
CentOS 8 : php:7.2 (CESA-2020:1624)
2021-02-01 00:00:00
osv
osv
Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
php7.0 - security update
2019-09-20 00:00:00
rocky
rocky
php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
almalinux
almalinux
Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
openvas
openvas
openSUSE: Security Advisory for php7 (openSUSE-SU-2019:1572-1)
2020-01-09 00:00:00
Debian: Security Advisory (DSA-4529-1)
2019-09-24 00:00:00
openSUSE: Security Advisory for php7 (openSUSE-SU-2019:1573-1)
2019-06-19 00:00:00
debian
debian
[SECURITY] [DSA 4529-1] php7.0 security update
2019-09-20 17:58:44
[SECURITY] [DSA 4527-1] php7.3 security update
2019-09-19 20:47:45
[SECURITY] [DSA 4398-1] php7.0 security update
2019-02-28 22:04:23
suse
suse
Security update for php7 (moderate)
2019-06-18 00:00:00
Security update for php7 (moderate)
2019-06-18 00:00:00
Security update for php7 (moderate)
2019-04-29 00:00:00
ibm
ibm
Security Bulletin: IBM BladeCenter Advanced Management Module (AMM) is affected by vulnerabiltiies in PHP.
2020-01-27 16:55:56
Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in PHP
2023-12-07 22:45:07
Security Bulletin: IBM API Connect Developer Portal is impacted by multiple PHP vulnerabilities(CVE-2019-11038 CVE-2019-11039 CVE-2019-11040)
2019-06-27 15:35:01
ubuntu
ubuntu
PHP vulnerabilities
2019-03-06 00:00:00
PHP vulnerabilities
2019-03-12 00:00:00
PHP vulnerabilities
2019-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: php-7.3.6-1.fc30
2019-06-06 01:07:20
[SECURITY] Fedora 29 Update: php-7.2.19-2.fc29
2019-06-08 02:13:48
amazon
amazon
Medium: php71, php72, php73
2019-07-17 23:33:00
Low: php71, php72, php73
2019-06-11 23:00:00
Medium: php71, php72, php73
2019-09-13 22:49:00
f5
f5
K25544541 : PHP vulnerabilities CVE-2019-9638, CVE-2019-9639, CVE-2019-9640, and CVE-2019-9641
2019-03-14 00:00:00
K44590877 : PHP vulnerabilities CVE-2019-11034 and CVE-2019-11035
2019-05-14 00:00:00
K50602063 : PHP vulnerability CVE-2019-9021
2019-02-28 00:00:00
redhatcve
redhatcve
CVE-2019-9021
2019-10-29 04:03:55
debiancve
debiancve
CVE-2019-9021
2019-02-22 23:29:00
freebsd
freebsd
PHP -- Multiple vulnerabilities in EXIF module
2019-04-04 00:00:00
prion
prion
Heap overflow
2019-02-22 23:29:00
alpinelinux
alpinelinux
CVE-2019-9021
2019-02-22 23:29:00
altlinux
altlinux
Security fix for the ALT Linux 10 package php8.1 version 7.2.21-alt1
2019-08-03 00:00:00
Security fix for the ALT Linux 10 package php8.0 version 7.2.21-alt1
2019-08-03 00:00:00
Security fix for the ALT Linux 9 package php7 version 7.2.21-alt1
2019-08-03 00:00:00
cvelist
cvelist
CVE-2019-9021
2019-02-22 23:00:00
nvd
nvd
CVE-2019-9021
2019-02-22 23:29:00
cve
cve
CVE-2019-9021
2019-02-22 23:29:00
ubuntucve
ubuntucve
CVE-2019-9021
2019-02-22 00:00:00

EPSS

0.714

Percentile

98.1%

JSON
Related for 9F602B8687BE73575110604BDF9E8B6065C08D24F910A0D708DFB01206F71AC0
redhat3oraclelinux1nessus74osv11rocky1almalinux1openvas58debian7suse7ibm5ubuntu11fedora2amazon3f53redhatcve1debiancve1freebsd1prion1alpinelinux1altlinux3cvelist1nvd1cve1ubuntucve1