Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2015 Greenbone AGOPENVAS:1361412562310869401
HistoryJun 09, 2015 - 12:00 a.m.

Fedora Update for php-symfony FEDORA-2015-9025

2015-06-0900:00:00
Copyright (C) 2015 Greenbone AG
plugins.openvas.org
15

6.4 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.1%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2015 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.869401");
  script_version("2023-06-22T10:34:15+0000");
  script_tag(name:"last_modification", value:"2023-06-22 10:34:15 +0000 (Thu, 22 Jun 2023)");
  script_tag(name:"creation_date", value:"2015-06-09 10:51:36 +0200 (Tue, 09 Jun 2015)");
  script_cve_id("CVE-2015-4050", "CVE-2015-2308", "CVE-2015-2309", "CVE-2014-6072",
                "CVE-2014-5245", "CVE-2014-4931", "CVE-2014-6061", "CVE-2014-5244");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_tag(name:"qod_type", value:"package");
  script_name("Fedora Update for php-symfony FEDORA-2015-9025");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'php-symfony'
  package(s) announced via the referenced advisory.");
  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
  script_tag(name:"affected", value:"php-symfony on Fedora 20");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_xref(name:"FEDORA", value:"2015-9025");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2015-June/159513.html");
  script_tag(name:"solution_type", value:"VendorFix");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2015 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC20");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC20")
{

  if ((res = isrpmvuln(pkg:"php-symfony", rpm:"php-symfony~2.5.12~1.fc20", rls:"FC20")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

openvas 7
fedora 7
nessus 8
cve 8
symfony 8
friendsofphp 1
github 2
prion 2
debiancve 3
ubuntucve 3
veracode 2
jvn 1
nuclei 1
osv 2
securityvulns 2
debian 1
openvas
openvas
Fedora Update for php-symfony FEDORA-2015-5464
2015-04-19 00:00:00
Fedora Update for php-symfony FEDORA-2015-9039
2015-06-09 00:00:00
Fedora Update for php-symfony FEDORA-2015-5504
2015-07-07 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: php-symfony-2.5.12-1.fc20
2015-06-05 23:49:57
[SECURITY] Fedora 20 Update: php-symfony-2.5.11-1.fc20
2015-04-18 09:30:28
[SECURITY] Fedora 21 Update: php-symfony-2.5.4-1.fc21
2014-09-23 04:24:16
nessus
nessus
Fedora 21 : php-symfony-2.5.4-1.fc21 (2014-10239)
2014-09-23 00:00:00
Fedora 21 : php-symfony-2.5.11-1.fc21 (2015-5457)
2015-04-20 00:00:00
Fedora 20 : php-symfony-2.5.11-1.fc20 (2015-5464)
2015-04-20 00:00:00
cve
cve
CVE-2014-5245
2023-01-29 20:37:01
CVE-2014-6072
2023-01-29 20:37:01
CVE-2014-6061
2023-01-29 20:37:01
symfony
symfony
CVE-2014-5245: Direct access of ESI URLs behind a trusted proxy
2014-09-03 00:00:00
CVE-2015-2308: Esi Code Injection
2015-04-01 00:00:00
CVE-2014-6072: CSRF vulnerability in the Web Profiler
2014-09-03 00:00:00
friendsofphp
friendsofphp
Fixed potential path traversal attack and remote code injection
2014-07-29 11:19:06
github
github
Symfony Vulnerable to PHP Eval Injection
2022-05-17 03:34:11
Symfony Incorrect Access Control
2022-05-17 03:11:51
prion
prion
Sql injection
2015-06-24 10:59:00
Design/Logic Flaw
2015-06-02 14:59:00
debiancve
debiancve
CVE-2015-2308
2015-06-24 10:59:00
CVE-2015-4050
2015-06-02 14:59:00
CVE-2015-2309
2023-01-29 20:37:01
ubuntucve
ubuntucve
CVE-2015-2308
2015-06-24 00:00:00
CVE-2015-4050
2015-06-02 00:00:00
CVE-2015-2309
2015-04-03 00:00:00
veracode
veracode
Arbitrary Code Injection
2017-07-28 08:49:25
Unauthorised Access Through Bypassing URL Signing And Security Rules
2017-07-28 07:50:50
jvn
jvn
JVN#19578958: Symfony vulnerable to code injection
2015-06-23 00:00:00
nuclei
nuclei
Symfony - Authentication Bypass
2021-08-30 13:49:02
osv
osv
symfony - security update
2015-05-31 00:00:00
Symfony Incorrect Access Control
2022-05-17 03:11:51
securityvulns
securityvulns
[SECURITY] [DSA 3276-1] symfony security update
2015-06-08 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2015-06-08 00:00:00
debian
debian
[SECURITY] [DSA 3276-1] symfony security update
2015-05-31 08:52:34

6.4 Medium

AI Score

Confidence

Low

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

78.1%

JSON
Related for OPENVAS:1361412562310869401
openvas7fedora7nessus8cve8symfony8friendsofphp1github2prion2debiancve3ubuntucve3veracode2jvn1nuclei1osv2securityvulns2debian1