Access Restriction Bypass Affecting symfony/symfony package, versions >=2.3.19, <2.3.29 >=2.6.0, <2.6.8 >=2.4.9, <2.5.0 >=2.5.4, <2.5.12
Threat Intelligence
Exploit Maturity
Proof of concept
EPSS
0.6% (79th
percentile)
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-PHP-SYMFONYSYMFONY-70217
- published 26 May 2015
- disclosed 26 May 2015
- credit Unknown
Introduced: 26 May 2015
CVE-2015-4050 Open this link in a new tabHow to fix?
Upgrade symfony/symfony to version 2.3.29, 2.6.8, 2.5.0, 2.5.12 or higher.
Overview
Affected versions of symfony/symfony are vulnerable to Access Restriction Bypass.
FragmentListener in the HttpKernel component in Symfony 2.3.19 through 2.3.28, 2.4.9 through 2.4.10, 2.5.4 through 2.5.11, and 2.6.0 through 2.6.7, when ESI or SSI support enabled, does not check if the _controller attribute is set, which allows remote attackers to bypass URL signing and security rules by including (1) no hash or (2) an invalid hash in a request to /_fragment.
References
CVSS Scores
version 3.1