Remote Code Execution Vulnerability in HHVM by Facebook
CVE-2019-11930
9.8CRITICAL
What is CVE-2019-11930?
An invalid memory deallocation in the mb_detect_order function within HHVM can lead to application instability and potential remote code execution. Affected versions are notably vulnerable, and it's crucial for users to upgrade to the latest secure versions to mitigate risks.
Affected Version(s)
HHVM 4.28.2
HHVM 4.28.0
HHVM 4.27.1