Known Vulnerabilities for Hiphop Virtual Machine by Facebook
Listed below are 7 of the newest known vulnerabilities associated with "Hiphop Virtual Machine" by "Facebook".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2019-3570 | Call to the scrypt_enc() function in HHVM can lead to heap corruption by using specifically crafted parameters (N, r and p). ... | 9.8 - CRITICAL | 2019-07-18 | 2020-10-16 |
| CVE-2014-9714 | Cross-site scripting (XSS) vulnerability in the WddxPacket::recursiveAddVar function in HHVM (aka the HipHop Virtual Machine)... | 4.3 - MEDIUM | 2015-04-13 | 2016-06-24 |
| CVE-2014-6229 | The HashContext class in hphp/runtime/ext/ext_hash.cpp in Facebook HipHop Virtual Machine (HHVM) before 3.3.0 incorrectly exp... | 5 - MEDIUM | 2014-12-28 | 2014-12-30 |
| CVE-2014-6228 | Integer overflow in the string_chunk_split function in hphp/runtime/base/zend-string.cpp in Facebook HipHop Virtual Machine (... | 7.5 - HIGH | 2014-12-28 | 2014-12-30 |
| CVE-2014-5386 | The mcrypt_create_iv function in hphp/runtime/ext/mcrypt/ext_mcrypt.cpp in Facebook HipHop Virtual Machine (HHVM) before 3.3.... | 5 - MEDIUM | 2014-12-28 | 2014-12-30 |
| CVE-2014-2209 | Facebook HipHop Virtual Machine (HHVM) before 3.1.0 does not drop supplemental group memberships within hphp/util/capability.... | 5 - MEDIUM | 2014-12-28 | 2014-12-30 |
| CVE-2014-2208 | CRLF injection vulnerability in the LightProcess protocol implementation in hphp/util/light-process.cpp in Facebook HipHop Vi... | 7.5 - HIGH | 2014-12-28 | 2014-12-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Hiphop Virtual Machine | 4.9.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.9.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.8.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.8.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.7.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.7.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.6.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.6.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.5.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.5.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.4.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.4.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.3.1 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.3.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.2.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.15.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.14.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.13.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.12.0 | All | All | All | |
| Application | Hiphop Virtual Machine | 4.11.0 | All | All | All |