Filtered by vendor Facebook
Subscribe
Total
120 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-15841 | 1 Facebook | 1 Facebook For Woocommerce | 2024-02-04 | 6.8 MEDIUM | 8.8 HIGH |
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, or ajax_fb_toggle_visibility. | |||||
CVE-2019-3569 | 1 Facebook | 1 Hhvm | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
HHVM, when used with FastCGI, would bind by default to all available interfaces. This behavior could allow a malicious individual unintended direct access to the application, which could result in information disclosure. This issue affects versions 4.3.0, 4.4.0, 4.5.0, 4.6.0, 4.7.0, 4.8.0, versions 3.30.5 and below, and all versions in the 4.0, 4.1, and 4.2 series. | |||||
CVE-2019-3570 | 1 Facebook | 1 Hiphop Virtual Machine | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Call to the scrypt_enc() function in HHVM can lead to heap corruption by using specifically crafted parameters (N, r and p). This happens if the parameters are configurable by an attacker for instance by providing the output of scrypt_enc() in a context where Hack/PHP code would attempt to verify it by re-running scrypt_enc() with the same parameters. This could result in information disclosure, memory being overwriten or crashes of the HHVM process. This issue affects versions 4.3.0, 4.4.0, 4.5.0, 4.6.0, 4.7.0, 4.8.0, versions 3.30.5 and below, and all versions in the 4.0, 4.1, and 4.2 series. | |||||
CVE-2019-3565 | 1 Facebook | 1 Thrift | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Legacy C++ Facebook Thrift servers (using cpp instead of cpp2) would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.05.06.00. | |||||
CVE-2019-11924 | 1 Facebook | 1 Fizz | 2024-02-04 | 7.8 HIGH | 7.5 HIGH |
A peer could send empty handshake fragments containing only padding which would be kept in memory until a full handshake was received, resulting in memory exhaustion. This issue affects versions v2019.01.28.00 and above of fizz, until v2019.08.05.00. | |||||
CVE-2019-11921 | 1 Facebook | 1 Proxygen | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
An out of bounds write is possible via a specially crafted packet in certain configurations of Proxygen due to improper handling of Base64 when parsing malformed binary content in Structured HTTP Headers. This issue affects versions of proxygen prior to v2019.07.22.00. | |||||
CVE-2019-11922 | 1 Facebook | 1 Zstandard | 2024-02-04 | 6.8 MEDIUM | 8.1 HIGH |
A race condition in the one-pass compression functions of Zstandard prior to version 1.3.8 could allow an attacker to write bytes out of bounds if an output buffer smaller than the recommended size was used. | |||||
CVE-2019-3561 | 1 Facebook | 1 Hhvm | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Insufficient boundary checks for the strrpos and strripos functions allow access to out-of-bounds memory. This affects all supported versions of HHVM (4.0.3, 3.30.4, and 3.27.7 and below). | |||||
CVE-2019-3552 | 1 Facebook | 1 Thrift | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
C++ Facebook Thrift servers (using cpp2) would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.02.18.00. | |||||
CVE-2019-3559 | 1 Facebook | 1 Thrift | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Java Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.02.18.00. | |||||
CVE-2019-3558 | 1 Facebook | 1 Thrift | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
Python Facebook Thrift servers would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messages which would take a long time for the server to parse, potentially leading to denial of service. This issue affects Facebook Thrift prior to v2019.02.18.00. | |||||
CVE-2019-15840 | 1 Facebook | 1 Facebook For Woocommerce | 2024-02-04 | 6.8 MEDIUM | 8.8 HIGH |
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF. | |||||
CVE-2019-3560 | 1 Facebook | 1 Fizz | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to v2019.03.04.00. | |||||
CVE-2018-6341 | 1 Facebook | 1 React | 2024-02-04 | 4.3 MEDIUM | 6.1 MEDIUM |
React applications which rendered to HTML using the ReactDOMServer API were not escaping user-supplied attribute names at render-time. That lack of escaping could lead to a cross-site scripting vulnerability. This issue affected minor releases 16.0.x, 16.1.x, 16.2.x, 16.3.x, and 16.4.x. It was fixed in 16.0.1, 16.1.2, 16.2.1, 16.3.3, and 16.4.2. | |||||
CVE-2018-6337 | 1 Facebook | 2 Folly, Hhvm | 2024-02-04 | 5.0 MEDIUM | 7.5 HIGH |
folly::secureRandom will re-use a buffer between parent and child processes when fork() is called. That will result in multiple forked children producing repeat (or similar) results. This affects HHVM 3.26 prior to 3.26.3 and the folly library between v2017.12.11.00 and v2018.08.09.00. | |||||
CVE-2018-6342 | 2 Facebook, Microsoft | 2 React-dev-utils, Windows | 2024-02-04 | 10.0 HIGH | 9.8 CRITICAL |
react-dev-utils on Windows allows developers to run a local webserver for accepting various commands, including a command to launch an editor. The input to that command was not properly sanitized, allowing an attacker who can make a network request to the server (either via CSRF or by direct request) to execute arbitrary commands on the targeted system. This issue affects multiple branches: 1.x.x prior to 1.0.4, 2.x.x prior to 2.0.2, 3.x.x prior to 3.1.2, 4.x.x prior to 4.2.2, and 5.x.x prior to 5.0.2. | |||||
CVE-2018-6332 | 1 Facebook | 1 Hhvm | 2024-02-04 | 4.3 MEDIUM | 5.9 MEDIUM |
A potential denial-of-service issue in the Proxygen handling of invalid HTTP2 settings which can cause the server to spend disproportionate resources. This affects all supported versions of HHVM (3.24.3 and 3.21.7 and below) when using the proxygen server to handle HTTP2 requests. | |||||
CVE-2019-3554 | 1 Facebook | 1 Wangle | 2024-02-04 | 4.3 MEDIUM | 5.9 MEDIUM |
Wangle's AcceptRoutingHandler incorrectly casts a socket when accepting a TLS 1.3 connection, leading to a potential denial of service attack against systems accepting such connections. This affects versions of Wangle prior to v2019.01.14.00 | |||||
CVE-2018-6331 | 1 Facebook | 1 Buck | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Buck parser-cache command loads/saves state using Java serialized object. If the state information is maliciously crafted, deserializing it could lead to code execution. This issue affects Buck versions prior to v2018.06.25.01. | |||||
CVE-2018-6334 | 1 Facebook | 1 Hhvm | 2024-02-04 | 7.5 HIGH | 9.8 CRITICAL |
Multipart-file uploads call variables to be improperly registered in the global scope. In cases where variables are not declared explicitly before being used this can lead to unexpected behavior. This affects all supported versions of HHVM prior to the patch (3.25.1, 3.24.5, and 3.21.9 and below). |