CVE-2019-11043 — Actively Exploited: FastCGI Process Manager (FPM) (PHP)
In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.
| CVE ID | CVE-2019-11043 |
|---|---|
| Vendor | PHP |
| Product | FastCGI Process Manager (FPM) |
| Vulnerability name | PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability |
| Date added | 2022-03-25 |
| Remediation due | 2022-04-15 |
| Known ransomware use | Known |
| Required action | Apply updates per vendor instructions. |
| Description | In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →