CVE-2019-11043— Underflow in PHP-FPM can lead to RCE
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-11043
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Underflow in PHP-FPM can lead to RCE
Source: NVD (National Vulnerability Database)
Vulnerability Description
In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of remote code execution.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
Source: NVD (National Vulnerability Database)
Vulnerability Title
PHP 缓冲区错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
PHP(PHP:Hypertext Preprocessor,PHP:超文本预处理器)是PHPGroup和开放源代码社区的共同维护的一种开源的通用计算机脚本语言。该语言主要用于Web开发,支持多种数据库及操作系统。 PHP中存在缓冲区错误漏洞。该漏洞源于网络系统或产品在内存上执行操作时,未正确验证数据边界,导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲区溢出或堆溢出等。以下产品及版本受到影响:PHP 7.1.33之前版本的7.1.x版本,7.2.24之前版本的7.2.x版本,7
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
II. Public POCs for CVE-2019-11043
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Exploit for CVE-2019-11043 | https://github.com/neex/phuip-fpizdam | POC Details |
| 2 | CVE-2019-11043 | https://github.com/B1gd0g/CVE-2019-11043 | POC Details |
| 3 | None | https://github.com/tinker-li/CVE-2019-11043 | POC Details |
| 4 | php-fpm+Nginx RCE | https://github.com/jas502n/CVE-2019-11043 | POC Details |
| 5 | PHP-FPM Remote Code Execution Vulnerability (CVE-2019-11043) POC in Python | https://github.com/AleWong/PHP-FPM-Remote-Code-Execution-Vulnerability-CVE-2019-11043- | POC Details |
| 6 | None | https://github.com/ianxtianxt/CVE-2019-11043 | POC Details |
| 7 | None | https://github.com/fairyming/CVE-2019-11043 | POC Details |
| 8 | None | https://github.com/akamajoris/CVE-2019-11043-Docker | POC Details |
| 9 | (PoC) Python version of CVE-2019-11043 exploit by neex | https://github.com/theMiddleBlue/CVE-2019-11043 | POC Details |
| 10 | CVE-2019-11043 PHP远程代码执行 | https://github.com/shadow-horse/cve-2019-11043 | POC Details |
| 11 | Python exp for CVE-2019-11043 | https://github.com/huowen/CVE-2019-11043 | POC Details |
| 12 | Docker image and commands to check CVE-2019-11043 vulnerability on nginx/php-fpm applications. | https://github.com/ypereirareis/docker-CVE-2019-11043 | POC Details |
| 13 | CVE-2019-11043 && PHP7.x && RCE EXP | https://github.com/MRdoulestar/CVE-2019-11043 | POC Details |
| 14 | CVE-2019-11043 PHP7.x RCE | https://github.com/0th3rs-Security-Team/CVE-2019-11043 | POC Details |
| 15 | Ladon POC Moudle CVE-2019-11043 (PHP-FPM + Ngnix) | https://github.com/k8gege/CVE-2019-11043 | POC Details |
| 16 | remote debug environment for CLion | https://github.com/moniik/CVE-2019-11043_env | POC Details |
| 17 | This repository provides a dockerized infrastructure and a python implementation of the CVE-2019-11043 exploit. | https://github.com/kriskhub/CVE-2019-11043 | POC Details |
| 18 | None | https://github.com/alokaranasinghe/cve-2019-11043 | POC Details |
| 19 | quick and dirty PHP RCE proof of concept | https://github.com/corifeo/CVE-2019-11043 | POC Details |
| 20 | PHP-FPM Remote Command Execution Exploit | https://github.com/lindemer/CVE-2019-11043 | POC Details |
| 21 | CVE-2019-11043 | https://github.com/jptr218/php_hack | POC Details |
| 22 | CVE-2019-11043 LAB | https://github.com/jas9reet/CVE-2019-11043 | POC Details |
| 23 | None | https://github.com/Threekiii/Awesome-POC/blob/master/%E5%BC%80%E5%8F%91%E8%AF%AD%E8%A8%80%E6%BC%8F%E6%B4%9E/PHP-FPM%20%E8%BF%9C%E7%A8%8B%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C%E6%BC%8F%E6%B4%9E%20CVE-2019-11043.md | POC Details |
| 24 | https://github.com/vulhub/vulhub/blob/master/php/CVE-2019-11043/README.md | POC Details | |
| 25 | exploit for CVE-2019-11043 | https://github.com/bayazid-bit/CVE-2019-11043- | POC Details |
| 26 | None | https://github.com/a1ex-var1amov/ctf-cve-2019-11043 | POC Details |
| 27 | Exploit for CVE-2019-11043 | https://github.com/CodeHex083/phuip-fpizdam | POC Details |
| 28 | None | https://github.com/AndrewMas99/CVE-2019-11043-Vulnerability | POC Details |
| 29 | Python port of an ExploitDB proof-of-concept. | https://github.com/gon905332-jpg/cve-2019-11043.py | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-11043
请登录查看更多情报信息。
- https://github.com/neex/phuip-fpizdamx_refsource_MISC
- https://www.tenable.com/security/tns-2021-14x_refsource_CONFIRM
- https://bugs.php.net/bug.php?id=78599x_refsource_CONFIRM
- https://support.apple.com/kb/HT210919x_refsource_CONFIRM
- https://security.netapp.com/advisory/ntap-20191031-0003/x_refsource_CONFIRM
- https://www.synology.com/security/advisory/Synology_SA_19_36x_refsource_CONFIRM
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00014.htmlvendor-advisoryx_refsource_SUSE
- http://lists.opensuse.org/opensuse-security-announce/2019-11/msg00011.htmlvendor-advisoryx_refsource_SUSE
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T62LF4ZWVV7OMMIZFO6IFO5QLZKK7YRD/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3W23TP6X4H7LB645FYZLUPNIRD5W3EPU/vendor-advisoryx_refsource_FEDORA
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FSNBUSPKMLUHHOADROKNG5GDWDCRHT5M/vendor-advisoryx_refsource_FEDORA
- https://nvd.nist.gov/vuln/detail/CVE-2019-11043
IV. Related Vulnerabilities
Same product: PHP
Same weakness: CWE-120
- CVE-2026-8260
D-Link DCS-935L HNAP Service hnap_service SetDeviceSettings - CVE-2026-8137
Totolink X5000R formDdns sub_458E40 buffer overflow - CVE-2026-6691
MongoDB C Driver Cyrus SASL Canonicalization Buffer Overflow - CVE-2026-7857
D-Link DI-8100 CGI user_group.asp sprintf buffer overflow - CVE-2026-7856
D-Link DI-8100 Web Management url_member.asp buffer overflow
V. Comments for CVE-2019-11043
No comments yet