Certain Symfony products are affected by: Incorrect Access Control. This affects Symfony 2.7.30 and Symfony 2.8.23 and Symfony 3.2.10 and Symfony 3.3.3. The type of exploitation is: remote. The component is: Password validator.
{
"cpe": [
"cpe:2.3:a:sensiolabs:symfony:2.7.30:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:2.8.23:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:3.2.10:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:3.3.3:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "2.7.30"
},
{
"last_affected": "2.7.30"
},
{
"introduced": "2.8.23"
},
{
"last_affected": "2.8.23"
},
{
"introduced": "3.2.10"
},
{
"last_affected": "3.2.10"
},
{
"introduced": "3.3.3"
},
{
"last_affected": "3.3.3"
}
],
"source": "CPE_STRING"
}{
"cpe": [
"cpe:2.3:a:sensiolabs:symfony:2.7.30:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:2.8.23:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:3.2.10:*:*:*:*:*:*:*",
"cpe:2.3:a:sensiolabs:symfony:3.3.3:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "2.7.30"
},
{
"last_affected": "2.7.30"
},
{
"introduced": "2.8.23"
},
{
"last_affected": "2.8.23"
},
{
"introduced": "3.2.10"
},
{
"last_affected": "3.2.10"
},
{
"introduced": "3.3.3"
},
{
"last_affected": "3.3.3"
}
],
"source": [
"CPE_STRING",
"REFERENCES"
]
}