4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
4.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.9%
Symfony 4.4.0 to 4.4.6 and 5.0.0 to 5.0.6 versions of the Symfony HttpFoundation component are affected by this security issue.
The issue has been fixed in Symfony 4.4.7 and 5.0.7.
When a Response
does not contain a Content-Type
header, Symfony falls back to the format defined in the Accept
header of the request, leading to a possible mismatch between the response’s content and Content-Type
header. When the response is cached, this can lead to a corrupted cache where the cached format is not the right one.
Symfony does not use the Accept
header anymore to guess the Content-Type
.
The patch for this issue is available here for the 4.4 branch.
I would like to thank Xavier Lacot from JoliCode for reporting & Yonel Ceruto and Tobias Schultze for fixing the issue.
Log in to add a reaction to this post
add a reaction ❤️ 👍 🚀
Published in #Security Advisories
4 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:N/A:P
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
4.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
54.9%