Vulnerabilities > Facebook

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-31	CVE-2018-6335	Improper Input Validation vulnerability in Facebook Hhvm A Malformed h2 frame can cause 'std::out_of_range' exception when parsing priority meta data. network low complexity facebook CWE-20	5.0
2018-12-31	CVE-2018-6334	Improper Input Validation vulnerability in Facebook Hhvm Multipart-file uploads call variables to be improperly registered in the global scope. network low complexity facebook CWE-20	7.5
2018-12-03	CVE-2018-6332	Data Processing Errors vulnerability in Facebook Hhvm A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 settings which can cause the server to spend disproportionate resources. network facebook CWE-19	4.3
2017-02-17	CVE-2016-6875	Unspecified vulnerability in Facebook Hhvm Infinite recursion in wddx in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. network low complexity facebook	7.5
2017-02-17	CVE-2016-6874	Unspecified vulnerability in Facebook Hhvm The array_*_recursive functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, related to recursion. network low complexity facebook	7.5
2017-02-17	CVE-2016-6873	Unspecified vulnerability in Facebook Hhvm Self recursion in compact in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. network low complexity facebook	7.5
2017-02-17	CVE-2016-6872	Integer Overflow or Wraparound vulnerability in Facebook Hhvm Integer overflow in StringUtil::implode in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. network low complexity facebook CWE-190	7.5
2017-02-17	CVE-2016-6871	Integer Overflow or Wraparound vulnerability in Facebook Hhvm Integer overflow in bcmath in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors, which triggers a buffer overflow. network low complexity facebook CWE-190	7.5
2017-02-17	CVE-2016-6870	Out-of-bounds Write vulnerability in Facebook Hhvm Out-of-bounds write in the (1) mb_detect_encoding, (2) mb_send_mail, and (3) mb_detect_order functions in Facebook HHVM before 3.15.0 allows attackers to have unspecified impact via unknown vectors. network low complexity facebook CWE-787	7.5
2015-04-13	CVE-2014-9714	Cross-site Scripting vulnerability in Facebook Hiphop Virtual Machine Cross-site scripting (XSS) vulnerability in the WddxPacket::recursiveAddVar function in HHVM (aka the HipHop Virtual Machine) before 3.5.0 allows remote attackers to inject arbitrary web script or HTML via a crafted string to the wddx_serialize_value function. network facebook CWE-79	4.3

Vulnerabilities > Facebook {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Facebook"}]}

Vulnerabilities > Facebook