Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-11385

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Security component in Symfony 2.7.x before 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x befor...

8.1CVSS7.2AI score0.02014EPSS
Exploits0References2
Debian
Debian
added 2019/03/10 1:19 a.m.199 views

[SECURITY] [DLA 1707-1] symfony security update

Package : symfony Version : 2.3.21+dfsg-4+deb8u4 CVE ID : CVE-2017-16652 CVE-2017-16654 CVE-2018-11385 CVE-2018-11408 CVE-2018-14773 CVE-2018-19789 CVE-2018-19790 Several security vulnerabilities have been discovered in symfony, a PHP web application framework. Numerous symfony components are...

8.1CVSS6.9AI score0.58061EPSS
Exploits0
OpenVAS
OpenVAS
added 2019/03/10 12:0 a.m.90 views

Debian: Security Advisory (DLA-1707-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.8AI score0.58061EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.22 views

Fedora 28 : php-symfony3 (2018-ba0b683c10)

Version 3.4.11 2018-05-25 - bug 27364 DI Fix bad exception on uninitialized references to non-shared services nicolas-grekas - bug 27359 HttpFoundation Fix perf issue during MimeTypeGuesser intialization nicolas-grekas - security cve-2018-11408 SecurityBundle Fail if security.httputils cannot be...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.34 views

Fedora 28 : php-symfony4 (2018-96d770ddc9)

Version 4.0.11 2018-05-25 - bug 27364 DI Fix bad exception on uninitialized references to non-shared services nicolas-grekas - bug 27359 HttpFoundation Fix perf issue during MimeTypeGuesser intialization nicolas-grekas - security cve-2018-11408 SecurityBundle Fail if security.httputils cannot be...

8.8CVSS6.8AI score0.02014EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2018/08/15 12:0 a.m.25 views

Fedora Update for php-symfony3 FEDORA-2018-6f3ceeb7cb

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS6.9AI score0.58061EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/07/09 12:0 a.m.23 views

Fedora 27 : php-symfony3 (2018-c8ddc44bbb)

3.3.17 2018-05-25 - security cve-2018-11407 Ldap cast to string when checking empty passwords - security cve-2018-11408 SecurityBundle Fail if security.httputils cannot be configured - security cve-2018-11406 clear CSRF tokens when the user is logged out - security cve-2018-11385 migrating sessio...

9.8CVSS6.8AI score0.02345EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/07/08 12:0 a.m.34 views

Fedora Update for php-symfony3 FEDORA-2018-c8ddc44bbb

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.02345EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2018/06/13 4:29 p.m.27 views

CVE-2018-11385

An issue was discovered in the Security component in Symfony 2.7.x before 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x before 4.0.11. A session fixation vulnerability within the "Guard" login feature may allow an attacker to impersonate a victim towards the web...

8.1CVSS7.2AI score0.02014EPSS
Exploits0References5
CVE
CVE
added 2018/06/13 4:0 p.m.89 views

CVE-2018-11385

CVE-2018-11385 affects the Symfony Security component (Guard login) across multiple branches: 2.7.x <= 2.7.47 (fixed in 2.7.48), 2.8.x <= 2.8.40 (fixed in 2.8.41), 3.3.x <= 3.3.16 (fixed in 3.3.17), 3.4.x <= 3.4.10 (fixed in 3.4.11), and 4.0.x

8.1CVSS6.7AI score0.02014EPSS
Exploits0References6Affected Software1
Friends Of PHP
Friends Of PHP
added 2018/05/25 12:12 p.m.23 views

CVE-2018-11385: Session Fixation Issue for Guard Authentication

More info at https://symfony.com/cve-2018-11385...

8.1CVSS7.2AI score0.02014EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2018/05/25 11:46 a.m.28 views

CVE-2018-11385: Session Fixation Issue for Guard Authentication

More info at https://symfony.com/cve-2018-11385...

8.1CVSS7.2AI score0.02014EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2018/05/25 11:46 a.m.25 views

CVE-2018-11385: Session Fixation Issue for Guard Authentication

More info at https://symfony.com/cve-2018-11385...

8.1CVSS7.2AI score0.02014EPSS
Exploits0Affected Software1
Friends Of PHP
Friends Of PHP
added 2018/05/25 11:46 a.m.22 views

CVE-2018-11385: Session Fixation Issue for Guard Authentication

More info at https://symfony.com/cve-2018-11385...

8.1CVSS7.2AI score0.02014EPSS
Exploits0Affected Software1
Symfony
Symfony
added 2018/05/25 12:0 a.m.60 views

CVE-2018-11385: Session Fixation Issue for Guard Authentication

Affected versions Symfony 2.7.0 to 2.7.47, 2.8.0 to 2.8.40, 3.3.0 to 3.3.16, 3.4.0 to 3.4.10 and 4.0.0 to 4.0.10 versions of the Symfony Security component are affected by this security issue. The issue has been fixed in Symfony 2.7.48, 2.8.41, 3.3.17, 3.4.11, and 4.0.11. Note that no fixes are...

8.1CVSS7.1AI score0.02014EPSS
Exploits0
Rows per page
Query Builder