There has been found a severe vulnerability in widely used Symfony PHP library. The vulnerability may lead to authentication bypass vulnerabilities.
Affected versions:
2.7.x earlier than 2.7.49
2.8.x earlier than 2.8.44
3.3.x earlier than 3.3.18
3.4.x earlier than 3.4.14
4.0.x earlier than 4.0.14
4.1.x earlier than 4.1.3
Symfony 3.0, 3.1, and 3.2 are not maintained anymore and won't get a fix. Users of these versions should move to more recent versions.
More information in Symfony blog.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment