Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
HHVM 4.172.0 and all prior versions use TLS 1.0 for secure connections when handling tls:// URLs in the stream extension. TLS1.0 has numerous published vulnerabilities and is deprecated. HHVM 4.153.4, 4.168.2, 4.169.2, 4.170.2, 4.171.1, 4.172.1, 4.173.0 replaces TLS1.0 with TLS1.3. Applications that call stream_socket_server or stream_socket_client functions with a URL starting with tls:// are affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Facebook HHVM 安全漏洞
Vulnerability Description
Facebook HHVM(又名HipHop Virtual Machine)是美国Facebook公司的一款能够显著提高PHP加载动态页面性能的虚拟机。 Facebook HHVM 4.172.0及之前版本存在安全漏洞,该漏洞源于在处理流扩展中使用TLS 1.0进行安全连接,TLS1.0有许多已发布的漏洞并且已被弃用。
CVSS Information
N/A
Vulnerability Type
N/A