CVE-2019-11458
N/A
N/A
Summary
An issue was discovered in SmtpTransport in CakePHP 3.7.6. An unserialized object with modified internal properties can trigger arbitrary file overwriting upon destruction.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://github.com/cakephp/cakephp/releases
- https://github.com/cakephp/cakephp/compare/3.7.6…3.7.7
- https://github.com/cakephp/cakephp/commits/master
- https://bakery.cakephp.org/2019/04/23/cakephp_377_3615_3518_released.html
- https://github.com/cakephp/cakephp/commit/1a74e798309192a9895c9cedabd714ceee345f4e
References
- https://github.com/cakephp/cakephp/releases
- https://github.com/cakephp/cakephp/compare/3.7.6…3.7.7
- https://github.com/cakephp/cakephp/commits/master
- https://bakery.cakephp.org/2019/04/23/cakephp_377_3615_3518_released.html
- https://github.com/cakephp/cakephp/commit/1a74e798309192a9895c9cedabd714ceee345f4e
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.