Vulnerabilities > PHP > PHP > 7.1.27

DATE CVE VULNERABILITY TITLE RISK
2019-04-18 CVE-2019-11035 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function.
network
low complexity
php canonical netapp CWE-119
6.4
6.4
2019-04-18 CVE-2019-11034 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_process_IFD_TAG function.
network
low complexity
php canonical netapp CWE-119
6.4
6.4