CVE-2019-11043CISA KEVEPSS p99.9%

CVE-2019-11043PHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerability

PHP / FastCGI Process Manager (FPM)

Description

In some versions of PHP in certain configurations of FPM setup, it is possible to cause FPM module to write past allocated buffers allowing the possibility of remote code execution.

Scoring

EPSS99.47% probability of exploitation · percentile 99.9% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-03-25

(incoming)1

TypeTargetConfidenceTier
KEVEntryPHP FastCGI Process Manager (FPM) Buffer Overflow Vulnerabilitykev-cve-2019-110430%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
PHP-CGI OS Command Injection Vulnerability
CVE
Drupal Core Remote Code Execution Vulnerability
CVE
Exim Out-of-bounds Write Vulnerability
CVE
PHP-CGI Query String Parameter Vulnerability
CVE
ThinkPHP Remote Code Execution Vulnerability
CVE
CVE-2025-23016
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.