CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Apr 15, 2022
High
CISA KEVRansomwareCVE-2019-11043
PHP—FastCGI Process Manager (FPM)
In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2019-11043
Vulnerability Overview
- Severity
- High
- CISA KEV
- Yes
- Ransomware
- Known
- Published
- Mar 25, 2022
- KEV Added
- Mar 25, 2022
- Due Date
- Apr 15, 2022
- Related Articles
- 0
Vendor
PHP
FastCGI Process Manager (FPM)