Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2015 Greenbone AGOPENVAS:1361412562310869397
HistoryJun 09, 2015 - 12:00 a.m.

Fedora Update for php-symfony FEDORA-2015-9039

2015-06-0900:00:00
Copyright (C) 2015 Greenbone AG
plugins.openvas.org
7

6.4 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.1%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2015 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.869397");
  script_version("2023-06-22T10:34:15+0000");
  script_tag(name:"last_modification", value:"2023-06-22 10:34:15 +0000 (Thu, 22 Jun 2023)");
  script_tag(name:"creation_date", value:"2015-06-09 10:50:57 +0200 (Tue, 09 Jun 2015)");
  script_cve_id("CVE-2015-4050", "CVE-2015-2308", "CVE-2015-2309");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_tag(name:"qod_type", value:"package");
  script_name("Fedora Update for php-symfony FEDORA-2015-9039");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'php-symfony'
  package(s) announced via the referenced advisory.");
  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
  script_tag(name:"affected", value:"php-symfony on Fedora 21");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_xref(name:"FEDORA", value:"2015-9039");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2015-June/159610.html");
  script_tag(name:"solution_type", value:"VendorFix");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2015 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC21");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC21")
{

  if ((res = isrpmvuln(pkg:"php-symfony", rpm:"php-symfony~2.5.12~1.fc21", rls:"FC21")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

fedora 6
openvas 7
nessus 7
symfony 3
github 2
prion 2
cve 3
ubuntucve 3
debiancve 3
veracode 2
jvn 1
nuclei 1
osv 2
securityvulns 2
debian 1
fedora
fedora
[SECURITY] Fedora 21 Update: php-symfony-2.5.12-1.fc21
2015-06-06 00:05:41
[SECURITY] Fedora 21 Update: php-symfony-2.5.11-1.fc21
2015-04-18 09:34:37
[SECURITY] Fedora 22 Update: php-symfony-2.5.11-1.fc22
2015-04-21 18:53:37
openvas
openvas
Fedora Update for php-symfony FEDORA-2015-5504
2015-07-07 00:00:00
Fedora Update for php-symfony FEDORA-2015-5457
2015-04-19 00:00:00
Fedora Update for php-symfony FEDORA-2015-9025
2015-06-09 00:00:00
nessus
nessus
Fedora 20 : php-symfony-2.5.11-1.fc20 (2015-5464)
2015-04-20 00:00:00
Fedora 21 : php-symfony-2.5.11-1.fc21 (2015-5457)
2015-04-20 00:00:00
Fedora 22 : php-symfony-2.5.11-1.fc22 (2015-5504)
2015-04-22 00:00:00
symfony
symfony
CVE-2015-2308: Esi Code Injection
2015-04-01 00:00:00
CVE-2015-4050: ESI unauthorized access
2015-05-27 00:00:00
CVE-2015-2309: Unsafe methods in the Request class
2015-04-01 00:00:00
github
github
Symfony Vulnerable to PHP Eval Injection
2022-05-17 03:34:11
Symfony Incorrect Access Control
2022-05-17 03:11:51
prion
prion
Sql injection
2015-06-24 10:59:00
Design/Logic Flaw
2015-06-02 14:59:00
cve
cve
CVE-2015-2308
2015-06-24 10:59:00
CVE-2015-4050
2015-06-02 14:59:00
CVE-2015-2309
2023-01-29 20:37:01
ubuntucve
ubuntucve
CVE-2015-2308
2015-06-24 00:00:00
CVE-2015-4050
2015-06-02 00:00:00
CVE-2015-2309
2015-04-03 00:00:00
debiancve
debiancve
CVE-2015-2308
2015-06-24 10:59:00
CVE-2015-2309
2023-01-29 20:37:01
CVE-2015-4050
2015-06-02 14:59:00
veracode
veracode
Arbitrary Code Injection
2017-07-28 08:49:25
Unauthorised Access Through Bypassing URL Signing And Security Rules
2017-07-28 07:50:50
jvn
jvn
JVN#19578958: Symfony vulnerable to code injection
2015-06-23 00:00:00
nuclei
nuclei
Symfony - Authentication Bypass
2021-08-30 13:49:02
osv
osv
symfony - security update
2015-05-31 00:00:00
Symfony Incorrect Access Control
2022-05-17 03:11:51
securityvulns
securityvulns
[SECURITY] [DSA 3276-1] symfony security update
2015-06-08 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2015-06-08 00:00:00
debian
debian
[SECURITY] [DSA 3276-1] symfony security update
2015-05-31 08:52:34

6.4 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.1%

JSON
Related for OPENVAS:1361412562310869397
fedora6openvas7nessus7symfony3github2prion2cve3ubuntucve3debiancve3veracode2jvn1nuclei1osv2securityvulns2debian1