CVE-2019-9637

high

Description

An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.

References

https://www.tenable.com/security/tns-2019-07

https://www.debian.org/security/2019/dsa-4403

https://usn.ubuntu.com/3922-3/

https://usn.ubuntu.com/3922-2/

https://usn.ubuntu.com/3922-1/

https://support.f5.com/csp/article/K53825211

https://security.netapp.com/advisory/ntap-20190502-0007/

https://lists.debian.org/debian-lts-announce/2019/03/msg00043.html

https://bugs.php.net/bug.php?id=77630

https://access.redhat.com/errata/RHSA-2019:3299

https://access.redhat.com/errata/RHSA-2019:2519

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html

http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00012.html

http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html

Details

Source: Mitre, NVD

Published: 2019-03-09

Updated: 2019-06-03

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High