cvelistv5 - CVE-2024-51736

CVE-2024-51736 (GCVE-0-2024-51736)

Vulnerability from cvelistv5 – Published: 2024-11-06 20:51 – Updated: 2024-11-21 23:23

Summary

Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.

Severity ?

0 (None)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N

CWE

CWE-77 - Improper Neutralization of Special Elements used in a Command ('Command Injection')

Assigner

GitHub_M

References

URL

Tags

	https://github.com/symfony/symfony/security/advis…	x_refsource_CONFIRM
	https://github.com/symfony/symfony/security/advis…	x_refsource_MISC

Impacted products

	Vendor	Product	Version
	symfony	symfony	Affected: < 5.4.46 Affected: >= 6.0.0, < 6.4.14 Affected: >= 7.0.0, < 7.1.7

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:symfony:symfony:*:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "symfony",
            "vendor": "symfony",
            "versions": [
              {
                "lessThan": "5.4.46",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              },
              {
                "lessThan": "6.4.14",
                "status": "affected",
                "version": "6.0.0",
                "versionType": "custom"
              },
              {
                "lessThan": "7.1.7",
                "status": "affected",
                "version": "7.0.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-51736",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-11-21T23:20:34.134307Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-11-21T23:23:26.713Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "symfony",
          "vendor": "symfony",
          "versions": [
            {
              "status": "affected",
              "version": "\u003c 5.4.46"
            },
            {
              "status": "affected",
              "version": "\u003e= 6.0.0, \u003c 6.4.14"
            },
            {
              "status": "affected",
              "version": "\u003e= 7.0.0, \u003c 7.1.7"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 0,
            "baseSeverity": "NONE",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-77",
              "description": "CWE-77: Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-11-06T20:51:38.536Z",
        "orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
        "shortName": "GitHub_M"
      },
      "references": [
        {
          "name": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q",
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
        },
        {
          "name": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q",
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
        }
      ],
      "source": {
        "advisory": "GHSA-qq5c-677p-737q",
        "discovery": "UNKNOWN"
      },
      "title": "Command execution hijack on Windows with Process class in symfony/process"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
    "assignerShortName": "GitHub_M",
    "cveId": "CVE-2024-51736",
    "datePublished": "2024-11-06T20:51:38.536Z",
    "dateReserved": "2024-10-31T14:12:45.788Z",
    "dateUpdated": "2024-11-21T23:23:26.713Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\"}, {\"lang\": \"es\", \"value\": \"Symphony process es un m\\u00f3dulo para el framework PHP Symphony que ejecuta comandos en subprocesos. En Windows, cuando un archivo ejecutable llamado `cmd.exe` se encuentra en el directorio de trabajo actual, la clase `Process` lo llamar\\u00e1 al preparar los argumentos del comando, lo que puede provocar un secuestro. Este problema se ha solucionado en las versiones de lanzamiento 5.4.46, 6.4.14 y 7.1.7. Se recomienda a los usuarios que actualicen la versi\\u00f3n. No existen workarounds para esta vulnerabilidad.\"}]",
      "id": "CVE-2024-51736",
      "lastModified": "2024-11-08T19:01:25.633",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N\", \"baseScore\": 0.0, \"baseSeverity\": \"NONE\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.5, \"impactScore\": 0.0}]}",
      "published": "2024-11-06T21:15:06.600",
      "references": "[{\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"source\": \"security-advisories@github.com\"}, {\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"source\": \"security-advisories@github.com\"}]",
      "sourceIdentifier": "security-advisories@github.com",
      "vulnStatus": "Awaiting Analysis",
      "weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-77\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-51736\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-11-06T21:15:06.600\",\"lastModified\":\"2025-09-04T16:08:00.420\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\"},{\"lang\":\"es\",\"value\":\"Symphony process es un m\u00f3dulo para el framework PHP Symphony que ejecuta comandos en subprocesos. En Windows, cuando un archivo ejecutable llamado `cmd.exe` se encuentra en el directorio de trabajo actual, la clase `Process` lo llamar\u00e1 al preparar los argumentos del comando, lo que puede provocar un secuestro. Este problema se ha solucionado en las versiones de lanzamiento 5.4.46, 6.4.14 y 7.1.7. Se recomienda a los usuarios que actualicen la versi\u00f3n. No existen workarounds para esta vulnerabilidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N\",\"baseScore\":0.0,\"baseSeverity\":\"NONE\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.5,\"impactScore\":0.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-77\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.4.46\",\"matchCriteriaId\":\"9D975006-5AF8-45A1-BDF0-5D876E977FAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.4.14\",\"matchCriteriaId\":\"12764F68-0CEE-4768-B8AD-BB218CFC8E17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.1.7\",\"matchCriteriaId\":\"C62D9AF5-0F1F-493E-A3EF-658F4BCED17A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A2572D17-1DE6-457B-99CC-64AFD54487EA\"}]}]}],\"references\":[{\"url\":\"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-51736\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-21T23:20:34.134307Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:symfony:symfony:*:*:*:*:*:*:*:*\"], \"vendor\": \"symfony\", \"product\": \"symfony\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"5.4.46\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"6.0.0\", \"lessThan\": \"6.4.14\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"7.0.0\", \"lessThan\": \"7.1.7\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-21T23:23:19.458Z\"}}], \"cna\": {\"title\": \"Command execution hijack on Windows with Process class in symfony/process\", \"source\": {\"advisory\": \"GHSA-qq5c-677p-737q\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 0, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"NONE\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"symfony\", \"product\": \"symfony\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003c 5.4.46\"}, {\"status\": \"affected\", \"version\": \"\u003e= 6.0.0, \u003c 6.4.14\"}, {\"status\": \"affected\", \"version\": \"\u003e= 7.0.0, \u003c 7.1.7\"}]}], \"references\": [{\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"name\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"tags\": [\"x_refsource_CONFIRM\"]}, {\"url\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"name\": \"https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q\", \"tags\": [\"x_refsource_MISC\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-77\", \"description\": \"CWE-77: Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2024-11-06T20:51:38.536Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-51736\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-21T23:23:26.713Z\", \"dateReserved\": \"2024-10-31T14:12:45.788Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2024-11-06T20:51:38.536Z\", \"assignerShortName\": \"GitHub_M\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-QQ5C-677P-737Q

Vulnerability from github – Published: 2024-11-06 15:22 – Updated: 2025-03-07 13:28

Summary

Symfony vulnerable to command execution hijack on Windows with Process class

Details

Description

On Windows, when an executable file named cmd.exe is located in the current working directory it will be called by the Process class when preparing command arguments, leading to possible hijacking.

Resolution

The Process class now uses the absolute path to cmd.exe.

The patch for this issue is available here for branch 5.4.

Credits

We would like to thank Jordi Boggiano for reporting the issue and Nicolas Grekas for providing the fix.

Severity ?

8.4 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

8.6 (High)


                  
                    CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/process"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.4.46"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/process"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "6.0.0"
            },
            {
              "fixed": "6.4.14"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/process"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "7.0.0"
            },
            {
              "fixed": "7.1.7"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/symfony"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "5.4.46"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/symfony"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "6.0.0"
            },
            {
              "fixed": "6.4.14"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/symfony"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "7.0.0"
            },
            {
              "fixed": "7.1.7"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2024-51736"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-77"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2024-11-06T15:22:55Z",
    "nvd_published_at": "2024-11-06T21:15:06Z",
    "severity": "HIGH"
  },
  "details": "### Description\n\nOn Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking.\n\n### Resolution\n\nThe `Process` class now uses the absolute path to `cmd.exe`.\n\nThe patch for this issue is available [here](https://github.com/symfony/symfony/commit/18ecd03eda3917fdf901a48e72518f911c64a1c9) for branch 5.4.\n\n### Credits\n\nWe would like to thank Jordi Boggiano for reporting the issue and Nicolas Grekas for providing the fix.",
  "id": "GHSA-qq5c-677p-737q",
  "modified": "2025-03-07T13:28:46Z",
  "published": "2024-11-06T15:22:55Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-51736"
    },
    {
      "type": "WEB",
      "url": "https://github.com/symfony/symfony/commit/18ecd03eda3917fdf901a48e72518f911c64a1c9"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/process/CVE-2024-51736.yaml"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2024-51736.yaml"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/symfony/symfony"
    },
    {
      "type": "WEB",
      "url": "https://symfony.com/cve-2024-51736"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "Symfony vulnerable to command execution hijack on Windows with Process class"
}

CERTFR-2024-AVI-0948

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Symfony. Certaines d'entre elles permettent à un attaquant de provoquer une atteinte à la confidentialité des données, un contournement de la politique de sécurité et un problème de sécurité non spécifié par l'éditeur.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Symfony	http-client	http-client versions 7.x antérieures à 7.1.7 pour composer
Symfony	security-bundle	security-bundle versions 6.x antérieures à 6.4.10 pour composer
Symfony	http-foundation	http-foundation versions 6.x antérieures à 6.4.14 pour composer
Symfony	http-foundation	http-foundation versions antérieures à 5.4.46 pour composer
Symfony	runtime	runtime versions 7.x antérieures à 7.1.7 pour composer
Symfony	runtime	runtime versions 6.x antérieures à 6.4.14 pour composer
Symfony	validator	validator versions 7.x antérieures à 7.1.4 pour composer
Symfony	process	process versions antérieures à 5.4.46 pour composer
Symfony	http-foundation	http-foundation versions 7.x antérieures à 7.1.7 pour composer
Symfony	runtime	runtime versions antérieures à 5.4.46 pour composer
Symfony	validator	validator versions antérieures à 5.4.43 pour composer
Symfony	http-client	http-client versions 5.4.46 pour composer
Symfony	security-bundle	security-bundle versions 7.1.x antérieures à 7.1.3 pour composer
Symfony	http-client	http-client versions 6.x antérieures à 6.4.14 pour composer
Symfony	security-bundle	security-bundle versions 7.0.x antérieures à 7.0.10 pour composer
Symfony	process	process versions 7.x antérieures à 7.1.7 pour composer
Symfony	validator	validator versions 6.x antérieures à 6.4.11 pour composer
Symfony	process	process versions 6.x antérieures à 6.4.14 pour composer

References

Title

Publication Time

Tags

Bulletin de sécurité Symfony GHSA-jxgr-3v7q-3w9v	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-x8vp-gf4q-mw5j	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-qq5c-677p-737q	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-9c3x-r3wp-mgxm	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-mrqx-rp3w-jpjp	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-g3rh-rrhp-jhh9	2024-11-06	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "http-client versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 6.x ant\u00e9rieures \u00e0 6.4.10 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions 7.x ant\u00e9rieures \u00e0 7.1.4 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions ant\u00e9rieures \u00e0 5.4.43 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-client versions 5.4.46 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 7.1.x ant\u00e9rieures \u00e0 7.1.3 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-client versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 7.0.x ant\u00e9rieures \u00e0 7.0.10 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions 6.x ant\u00e9rieures \u00e0 6.4.11 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-50341",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50341"
    },
    {
      "name": "CVE-2024-50342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50342"
    },
    {
      "name": "CVE-2024-51736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51736"
    },
    {
      "name": "CVE-2024-50340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50340"
    },
    {
      "name": "CVE-2024-50345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50345"
    },
    {
      "name": "CVE-2024-50343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50343"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0948",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Symfony. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Symfony",
  "vendor_advisories": [
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-jxgr-3v7q-3w9v",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-jxgr-3v7q-3w9v"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-x8vp-gf4q-mw5j",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-x8vp-gf4q-mw5j"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-qq5c-677p-737q",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-9c3x-r3wp-mgxm",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-9c3x-r3wp-mgxm"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-mrqx-rp3w-jpjp",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-mrqx-rp3w-jpjp"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-g3rh-rrhp-jhh9",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-g3rh-rrhp-jhh9"
    }
  ]
}

CERTFR-2025-AVI-0836

Vulnerability from certfr_avis - Published: 2025-10-01 - Updated: 2025-10-01

De multiples vulnérabilités ont été découvertes dans Tenable Security Center. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un contournement de la politique de sécurité.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Tenable	Security Center	Security Center sans le correctif de sécurité Patch SC-202509.2

References

Title

Publication Time

Tags

Bulletin de sécurité Tenable tns-2025-20

2025-09-26

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Security Center sans le correctif de s\u00e9curit\u00e9 Patch SC-202509.2",
      "product": {
        "name": "Security Center",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-52806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-52806"
    },
    {
      "name": "CVE-2024-24821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-24821"
    },
    {
      "name": "CVE-2024-35241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35241"
    },
    {
      "name": "CVE-2024-51736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51736"
    },
    {
      "name": "CVE-2024-45411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-45411"
    },
    {
      "name": "CVE-2023-46734",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-46734"
    },
    {
      "name": "CVE-2024-51755",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51755"
    },
    {
      "name": "CVE-2024-50345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50345"
    },
    {
      "name": "CVE-2025-27773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27773"
    },
    {
      "name": "CVE-2024-35242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35242"
    },
    {
      "name": "CVE-2024-51754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51754"
    }
  ],
  "initial_release_date": "2025-10-01T00:00:00",
  "last_revision_date": "2025-10-01T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0836",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-01T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Tenable Security Center. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un contournement de la politique de s\u00e9curit\u00e9.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Tenable",
  "vendor_advisories": [
    {
      "published_at": "2025-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2025-20",
      "url": "https://www.tenable.com/security/tns-2025-20"
    }
  ]
}

CERTFR-2024-AVI-0948

Vulnerability from certfr_avis - Published: - Updated:

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Symfony	http-client	http-client versions 7.x antérieures à 7.1.7 pour composer
Symfony	security-bundle	security-bundle versions 6.x antérieures à 6.4.10 pour composer
Symfony	http-foundation	http-foundation versions 6.x antérieures à 6.4.14 pour composer
Symfony	http-foundation	http-foundation versions antérieures à 5.4.46 pour composer
Symfony	runtime	runtime versions 7.x antérieures à 7.1.7 pour composer
Symfony	runtime	runtime versions 6.x antérieures à 6.4.14 pour composer
Symfony	validator	validator versions 7.x antérieures à 7.1.4 pour composer
Symfony	process	process versions antérieures à 5.4.46 pour composer
Symfony	http-foundation	http-foundation versions 7.x antérieures à 7.1.7 pour composer
Symfony	runtime	runtime versions antérieures à 5.4.46 pour composer
Symfony	validator	validator versions antérieures à 5.4.43 pour composer
Symfony	http-client	http-client versions 5.4.46 pour composer
Symfony	security-bundle	security-bundle versions 7.1.x antérieures à 7.1.3 pour composer
Symfony	http-client	http-client versions 6.x antérieures à 6.4.14 pour composer
Symfony	security-bundle	security-bundle versions 7.0.x antérieures à 7.0.10 pour composer
Symfony	process	process versions 7.x antérieures à 7.1.7 pour composer
Symfony	validator	validator versions 6.x antérieures à 6.4.11 pour composer
Symfony	process	process versions 6.x antérieures à 6.4.14 pour composer

References

Title

Publication Time

Tags

Bulletin de sécurité Symfony GHSA-jxgr-3v7q-3w9v	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-x8vp-gf4q-mw5j	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-qq5c-677p-737q	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-9c3x-r3wp-mgxm	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-mrqx-rp3w-jpjp	2024-11-06	vendor-advisory
Bulletin de sécurité Symfony GHSA-g3rh-rrhp-jhh9	2024-11-06	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "http-client versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 6.x ant\u00e9rieures \u00e0 6.4.10 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions 7.x ant\u00e9rieures \u00e0 7.1.4 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-foundation versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "http-foundation",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "runtime versions ant\u00e9rieures \u00e0 5.4.46 pour composer",
      "product": {
        "name": "runtime",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions ant\u00e9rieures \u00e0 5.4.43 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-client versions 5.4.46 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 7.1.x ant\u00e9rieures \u00e0 7.1.3 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "http-client versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "http-client",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "security-bundle versions 7.0.x ant\u00e9rieures \u00e0 7.0.10 pour composer",
      "product": {
        "name": "security-bundle",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions 7.x ant\u00e9rieures \u00e0 7.1.7 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "validator versions 6.x ant\u00e9rieures \u00e0 6.4.11 pour composer",
      "product": {
        "name": "validator",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    },
    {
      "description": "process versions 6.x ant\u00e9rieures \u00e0 6.4.14 pour composer",
      "product": {
        "name": "process",
        "vendor": {
          "name": "Symfony",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-50341",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50341"
    },
    {
      "name": "CVE-2024-50342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50342"
    },
    {
      "name": "CVE-2024-51736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51736"
    },
    {
      "name": "CVE-2024-50340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50340"
    },
    {
      "name": "CVE-2024-50345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50345"
    },
    {
      "name": "CVE-2024-50343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50343"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0948",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-11-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Symfony. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es, un contournement de la politique de s\u00e9curit\u00e9 et un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Symfony",
  "vendor_advisories": [
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-jxgr-3v7q-3w9v",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-jxgr-3v7q-3w9v"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-x8vp-gf4q-mw5j",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-x8vp-gf4q-mw5j"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-qq5c-677p-737q",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-9c3x-r3wp-mgxm",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-9c3x-r3wp-mgxm"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-mrqx-rp3w-jpjp",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-mrqx-rp3w-jpjp"
    },
    {
      "published_at": "2024-11-06",
      "title": "Bulletin de s\u00e9curit\u00e9 Symfony GHSA-g3rh-rrhp-jhh9",
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-g3rh-rrhp-jhh9"
    }
  ]
}

CERTFR-2025-AVI-0836

Vulnerability from certfr_avis - Published: 2025-10-01 - Updated: 2025-10-01

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

	Vendor	Product	Description
	Tenable	Security Center	Security Center sans le correctif de sécurité Patch SC-202509.2

References

Title

Publication Time

Tags

Bulletin de sécurité Tenable tns-2025-20

2025-09-26

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Security Center sans le correctif de s\u00e9curit\u00e9 Patch SC-202509.2",
      "product": {
        "name": "Security Center",
        "vendor": {
          "name": "Tenable",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2024-52806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-52806"
    },
    {
      "name": "CVE-2024-24821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-24821"
    },
    {
      "name": "CVE-2024-35241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35241"
    },
    {
      "name": "CVE-2024-51736",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51736"
    },
    {
      "name": "CVE-2024-45411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-45411"
    },
    {
      "name": "CVE-2023-46734",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-46734"
    },
    {
      "name": "CVE-2024-51755",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51755"
    },
    {
      "name": "CVE-2024-50345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-50345"
    },
    {
      "name": "CVE-2025-27773",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-27773"
    },
    {
      "name": "CVE-2024-35242",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-35242"
    },
    {
      "name": "CVE-2024-51754",
      "url": "https://www.cve.org/CVERecord?id=CVE-2024-51754"
    }
  ],
  "initial_release_date": "2025-10-01T00:00:00",
  "last_revision_date": "2025-10-01T00:00:00",
  "links": [],
  "reference": "CERTFR-2025-AVI-0836",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2025-10-01T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Tenable Security Center. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un contournement de la politique de s\u00e9curit\u00e9.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Tenable",
  "vendor_advisories": [
    {
      "published_at": "2025-09-26",
      "title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2025-20",
      "url": "https://www.tenable.com/security/tns-2025-20"
    }
  ]
}

FKIE_CVE-2024-51736

Vulnerability from fkie_nvd - Published: 2024-11-06 21:15 - Updated: 2025-09-04 16:08

Severity ?

0.0 (None) - CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security-advisories@github.com	https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q	Vendor Advisory

Impacted products

Vendor	Product	Version
sensiolabs	symfony	*
sensiolabs	symfony	*
sensiolabs	symfony	*
microsoft	windows	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D975006-5AF8-45A1-BDF0-5D876E977FAD",
              "versionEndExcluding": "5.4.46",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "12764F68-0CEE-4768-B8AD-BB218CFC8E17",
              "versionEndExcluding": "6.4.14",
              "versionStartIncluding": "6.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C62D9AF5-0F1F-493E-A3EF-658F4BCED17A",
              "versionEndExcluding": "7.1.7",
              "versionStartIncluding": "7.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Symphony process is a module for the Symphony PHP framework which executes commands in sub-processes. On Windows, when an executable file named `cmd.exe` is located in the current working directory it will be called by the `Process` class when preparing command arguments, leading to possible hijacking. This issue has been addressed in release versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability."
    },
    {
      "lang": "es",
      "value": "Symphony process es un m\u00f3dulo para el framework PHP Symphony que ejecuta comandos en subprocesos. En Windows, cuando un archivo ejecutable llamado `cmd.exe` se encuentra en el directorio de trabajo actual, la clase `Process` lo llamar\u00e1 al preparar los argumentos del comando, lo que puede provocar un secuestro. Este problema se ha solucionado en las versiones de lanzamiento 5.4.46, 6.4.14 y 7.1.7. Se recomienda a los usuarios que actualicen la versi\u00f3n. No existen workarounds para esta vulnerabilidad."
    }
  ],
  "id": "CVE-2024-51736",
  "lastModified": "2025-09-04T16:08:00.420",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 0.0,
          "baseSeverity": "NONE",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.5,
        "impactScore": 0.0,
        "source": "security-advisories@github.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-11-06T21:15:06.600",
  "references": [
    {
      "source": "security-advisories@github.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://github.com/symfony/symfony/security/advisories/GHSA-qq5c-677p-737q"
    }
  ],
  "sourceIdentifier": "security-advisories@github.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-77"
        }
      ],
      "source": "security-advisories@github.com",
      "type": "Secondary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-51736 (GCVE-0-2024-51736)

GHSA-QQ5C-677P-737Q

Description

Resolution

Credits

CERTFR-2024-AVI-0948

Solutions

CERTFR-2025-AVI-0836

Solutions

CERTFR-2024-AVI-0948

Solutions

CERTFR-2025-AVI-0836

Solutions

FKIE_CVE-2024-51736

Tags

Sightings

Nomenclature