📦 Hhvm

This vulnerability in HHVM allows attackers to intercept or manipulate encrypted network communications by forcing the use of deprecated TLS 1.0 protocol. Applications using HHVM's stream extension wi...

This CVE describes an integer overflow vulnerability in Facebook's folly library that affects HHVM. An attacker can pass a controlled size when creating an IOBuf, causing heap corruption that could le...

CVE-2020-1900 is a use-after-free vulnerability in HHVM's object unserialization that occurs when dynamic properties are not properly pre-reserved in memory arrays. This allows attackers to potentiall...

CVE-2020-1899 is a memory corruption vulnerability in HHVM's unserialize() function that allows accessing arbitrary memory addresses via the 'S' type code. This can lead to remote code execution or in...