cvelistv5 - cve-2012-6431

cve-2012-6431

Vulnerability from cvelistv5

Published

2012-12-27 11:00

Modified

2024-09-17 00:46

Severity ?

Summary

Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.

References

▼	URL	Tags
	cve@mitre.org	http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released	Vendor Advisory

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T21:28:39.767Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2012-12-27T11:00:00Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2012-6431",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released",
              "refsource": "CONFIRM",
              "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2012-6431",
    "datePublished": "2012-12-27T11:00:00Z",
    "dateReserved": "2012-12-19T00:00:00Z",
    "dateUpdated": "2024-09-17T00:46:20.194Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"379F1431-3466-4263-8C02-D6541E593F65\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7CBEC708-96A2-43DD-88C0-9407ABB6D4FF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"56B52BED-2996-4C96-A348-98A8C72C8EA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1C6279E7-F362-4C13-A965-908BCF9C30E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5A101B27-9AE7-4C04-80BC-03A981217782\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3360BFF1-89ED-4294-A503-835C9C40C7D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CE78FEA0-42E8-463C-9C7C-C778F712BB0F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AF5CEE9C-822C-491F-841C-218AA21C0AD1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"822F9083-5542-41AA-B9FA-1B43DE633340\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"165F68AE-AB34-4C20-88C6-56210548242B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B13BE7AA-72FD-402D-8919-BC5F23D03EFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"34B1B511-5EBC-4301-A561-AE15B63DFC74\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8AF62D2D-2D62-4F15-83CD-F635DC838031\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.13:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B3A8431-356C-498F-AAEA-EC8D05D74877\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.14:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E53A27F2-9C3D-4670-BE1E-A1F6994EF1CA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"18DEB929-6B35-488B-80BF-70448BF7A6F0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.16:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2EB03E2D-F137-4CBA-887D-D1461735C958\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.17:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D37175A7-C937-4758-8EED-BE24C43AA115\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.18:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E1EF598F-F8F6-4980-BC76-C2FAF8FE7AF8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sensiolabs:symfony:2.0.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C3CD1432-1C91-4DFE-86E0-E5E97775A425\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.\"}, {\"lang\": \"es\", \"value\": \"Symfony v2.0.20 antes de v2.0.x no procesa los datos de URL codificadas consistentemente  dentro de los componentes de seguridad y enrutado, lo que permite a atacantes remotos evitar las restricciones de acceso a URIs a trav\\u00e9s de una cadena doblemente codificada.\\r\\n\"}]",
      "id": "CVE-2012-6431",
      "lastModified": "2024-11-21T01:46:06.700",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:N\", \"baseScore\": 6.4, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2012-12-27T11:47:01.790",
      "references": "[{\"url\": \"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-264\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2012-6431\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2012-12-27T11:47:01.790\",\"lastModified\":\"2024-11-21T01:46:06.700\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.\"},{\"lang\":\"es\",\"value\":\"Symfony v2.0.20 antes de v2.0.x no procesa los datos de URL codificadas consistentemente  dentro de los componentes de seguridad y enrutado, lo que permite a atacantes remotos evitar las restricciones de acceso a URIs a trav\u00e9s de una cadena doblemente codificada.\\r\\n\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:N\",\"baseScore\":6.4,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-264\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"379F1431-3466-4263-8C02-D6541E593F65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CBEC708-96A2-43DD-88C0-9407ABB6D4FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56B52BED-2996-4C96-A348-98A8C72C8EA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C6279E7-F362-4C13-A965-908BCF9C30E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5A101B27-9AE7-4C04-80BC-03A981217782\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3360BFF1-89ED-4294-A503-835C9C40C7D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE78FEA0-42E8-463C-9C7C-C778F712BB0F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF5CEE9C-822C-491F-841C-218AA21C0AD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"822F9083-5542-41AA-B9FA-1B43DE633340\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"165F68AE-AB34-4C20-88C6-56210548242B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B13BE7AA-72FD-402D-8919-BC5F23D03EFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34B1B511-5EBC-4301-A561-AE15B63DFC74\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AF62D2D-2D62-4F15-83CD-F635DC838031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B3A8431-356C-498F-AAEA-EC8D05D74877\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E53A27F2-9C3D-4670-BE1E-A1F6994EF1CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"18DEB929-6B35-488B-80BF-70448BF7A6F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.16:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2EB03E2D-F137-4CBA-887D-D1461735C958\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.17:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D37175A7-C937-4758-8EED-BE24C43AA115\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.18:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E1EF598F-F8F6-4980-BC76-C2FAF8FE7AF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sensiolabs:symfony:2.0.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3CD1432-1C91-4DFE-86E0-E5E97775A425\"}]}]}],\"references\":[{\"url\":\"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

fkie_cve-2012-6431

Vulnerability from fkie_nvd

Published

2012-12-27 11:47

Modified

2024-11-21 01:46

Severity ?

Summary

References

▼	URL	Tags
	cve@mitre.org	http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released	Vendor Advisory

Impacted products

Vendor	Product	Version
sensiolabs	symfony	2.0.0
sensiolabs	symfony	2.0.1
sensiolabs	symfony	2.0.2
sensiolabs	symfony	2.0.3
sensiolabs	symfony	2.0.4
sensiolabs	symfony	2.0.5
sensiolabs	symfony	2.0.6
sensiolabs	symfony	2.0.7
sensiolabs	symfony	2.0.8
sensiolabs	symfony	2.0.9
sensiolabs	symfony	2.0.10
sensiolabs	symfony	2.0.11
sensiolabs	symfony	2.0.12
sensiolabs	symfony	2.0.13
sensiolabs	symfony	2.0.14
sensiolabs	symfony	2.0.15
sensiolabs	symfony	2.0.16
sensiolabs	symfony	2.0.17
sensiolabs	symfony	2.0.18
sensiolabs	symfony	2.0.19

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "379F1431-3466-4263-8C02-D6541E593F65",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "7CBEC708-96A2-43DD-88C0-9407ABB6D4FF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "56B52BED-2996-4C96-A348-98A8C72C8EA2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C6279E7-F362-4C13-A965-908BCF9C30E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A101B27-9AE7-4C04-80BC-03A981217782",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3360BFF1-89ED-4294-A503-835C9C40C7D7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE78FEA0-42E8-463C-9C7C-C778F712BB0F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF5CEE9C-822C-491F-841C-218AA21C0AD1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "822F9083-5542-41AA-B9FA-1B43DE633340",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "165F68AE-AB34-4C20-88C6-56210548242B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "B13BE7AA-72FD-402D-8919-BC5F23D03EFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "34B1B511-5EBC-4301-A561-AE15B63DFC74",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "8AF62D2D-2D62-4F15-83CD-F635DC838031",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B3A8431-356C-498F-AAEA-EC8D05D74877",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "E53A27F2-9C3D-4670-BE1E-A1F6994EF1CA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "18DEB929-6B35-488B-80BF-70448BF7A6F0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "2EB03E2D-F137-4CBA-887D-D1461735C958",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "D37175A7-C937-4758-8EED-BE24C43AA115",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "E1EF598F-F8F6-4980-BC76-C2FAF8FE7AF8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3CD1432-1C91-4DFE-86E0-E5E97775A425",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string."
    },
    {
      "lang": "es",
      "value": "Symfony v2.0.20 antes de v2.0.x no procesa los datos de URL codificadas consistentemente  dentro de los componentes de seguridad y enrutado, lo que permite a atacantes remotos evitar las restricciones de acceso a URIs a trav\u00e9s de una cadena doblemente codificada.\r\n"
    }
  ],
  "id": "CVE-2012-6431",
  "lastModified": "2024-11-21T01:46:06.700",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 6.4,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 4.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-12-27T11:47:01.790",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-264"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

ghsa-83c3-qx27-2rwr

Vulnerability from github

Published

2022-05-17 05:17

Modified

2023-09-21 23:06

Summary

Symfony Allows URI Restrictions Bypass Via Double-Encoded String

Details

On the Symfony 2.0.x version, there's a security issue that allows access to routes protected by a firewall even when the user is not logged in.

Both the Routing component and the Security component uses the path returned by getPathInfo() to match a Request. The getPathInfo() returns a decoded path, but the Routing component (Symfony\Component\Routing\Matcher\UrlMatcher) decodes the path a second time; whereas the Security component, Symfony\Component\HttpFoundation\RequestMatcher, does not.

This difference causes Symfony 2.0 to be vulnerable to double encoding attacks.

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/http-foundation"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.0.0"
            },
            {
              "fixed": "2.0.19"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/routing"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.0.0"
            },
            {
              "fixed": "2.0.19"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/security"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.0.0"
            },
            {
              "fixed": "2.0.19"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Packagist",
        "name": "symfony/symfony"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "2.0.0"
            },
            {
              "fixed": "2.0.19"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2012-6431"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-287"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2023-08-15T23:43:25Z",
    "nvd_published_at": "2012-12-27T11:47:00Z",
    "severity": "MODERATE"
  },
  "details": "On the Symfony 2.0.x version, there\u0027s a security issue that allows access to routes protected by a firewall even when the user is not logged in.\n\nBoth the Routing component and the Security component uses the path returned by `getPathInfo()` to match a Request. The `getPathInfo()` returns a decoded path, but the Routing component (`Symfony\\Component\\Routing\\Matcher\\UrlMatcher`) decodes the path a second time; whereas the Security component, `Symfony\\Component\\HttpFoundation\\RequestMatcher`, does not.\n\nThis difference causes Symfony 2.0 to be vulnerable to double encoding attacks.\n\n",
  "id": "GHSA-83c3-qx27-2rwr",
  "modified": "2023-09-21T23:06:08Z",
  "published": "2022-05-17T05:17:03Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-6431"
    },
    {
      "type": "WEB",
      "url": "https://github.com/symfony/symfony/commit/55014a6841bec50046e8329a4835c160ac31a496"
    },
    {
      "type": "WEB",
      "url": "https://github.com/symfony/symfony/commit/8b2c17f80377582287a78e0b521497e039dd6b0d"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/http-foundation/CVE-2012-6431.yaml"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/routing/CVE-2012-6431.yaml"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security/CVE-2012-6431.yaml"
    },
    {
      "type": "WEB",
      "url": "https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2012-6431.yaml"
    },
    {
      "type": "WEB",
      "url": "https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
    },
    {
      "type": "WEB",
      "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [],
  "summary": "Symfony Allows URI Restrictions Bypass Via Double-Encoded String"
}

gsd-2012-6431

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2012-6431

Aliases

CVE-2012-6431

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-6431",
    "description": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
    "id": "GSD-2012-6431"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-6431"
      ],
      "details": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
      "id": "GSD-2012-6431",
      "modified": "2023-12-13T01:20:17.425376Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2012-6431",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released",
            "refsource": "CONFIRM",
            "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003e=2.0.0,\u003c2.0.19",
          "affected_versions": "All versions starting from 2.0.0 before 2.0.19",
          "cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-264",
            "CWE-937"
          ],
          "date": "2013-01-07",
          "description": "Symfony does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
          "fixed_versions": [
            "2.0.19"
          ],
          "identifier": "CVE-2012-6431",
          "identifiers": [
            "CVE-2012-6431"
          ],
          "not_impacted": "All versions before 2.0.0, all versions starting from 2.0.19",
          "package_slug": "packagist/symfony/http-foundation",
          "pubdate": "2012-12-27",
          "solution": "Upgrade to version 2.0.19 or above.",
          "title": "Routes behind a firewall are accessible even when not logged in",
          "urls": [
            "https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          ],
          "uuid": "31088dd3-64fb-4ac4-8518-8080abed28b8"
        },
        {
          "affected_range": "\u003e=2.0.0,\u003c2.0.19",
          "affected_versions": "All versions starting from 2.0.0 before 2.0.19",
          "cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-264",
            "CWE-937"
          ],
          "date": "2013-01-07",
          "description": "Symfony does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
          "fixed_versions": [
            "2.0.19"
          ],
          "identifier": "CVE-2012-6431",
          "identifiers": [
            "CVE-2012-6431"
          ],
          "not_impacted": "All versions before 2.0.0, all versions starting from 2.0.19",
          "package_slug": "packagist/symfony/routing",
          "pubdate": "2012-12-27",
          "solution": "Upgrade to version 2.0.19 or above.",
          "title": "Improper Access Control",
          "urls": [
            "https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          ],
          "uuid": "e353d55f-387e-492b-82ce-389557f356a9"
        },
        {
          "affected_range": "\u003e=2.0.0,\u003c2.0.19",
          "affected_versions": "All versions starting from 2.0.0 before 2.0.19",
          "cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-264",
            "CWE-937"
          ],
          "date": "2013-01-07",
          "description": "Symfony does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
          "fixed_versions": [
            "2.0.19"
          ],
          "identifier": "CVE-2012-6431",
          "identifiers": [
            "CVE-2012-6431"
          ],
          "not_impacted": "All versions before 2.0.0, all versions starting from 2.0.19",
          "package_slug": "packagist/symfony/security",
          "pubdate": "2012-12-27",
          "solution": "Upgrade to version 2.0.19 or above.",
          "title": "Improper Access Control",
          "urls": [
            "https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          ],
          "uuid": "71b831ba-8c8e-4e54-89ff-88beb96091fd"
        },
        {
          "affected_range": "\u003e=2.0.0,\u003c2.0.19",
          "affected_versions": "All versions starting from 2.0.0 before 2.0.19",
          "cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
          "cwe_ids": [
            "CWE-1035",
            "CWE-264",
            "CWE-937"
          ],
          "date": "2013-01-07",
          "description": "Symfony does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string.",
          "fixed_versions": [
            "2.0.19"
          ],
          "identifier": "CVE-2012-6431",
          "identifiers": [
            "CVE-2012-6431"
          ],
          "not_impacted": "All versions before 2.0.0, all versions starting from 2.0.19",
          "package_slug": "packagist/symfony/symfony",
          "pubdate": "2012-12-27",
          "solution": "Upgrade to version 2.0.19 or above.",
          "title": "Routes behind a firewall are accessible even when not logged in",
          "urls": [
            "https://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
          ],
          "uuid": "fe6eeb99-0714-43b0-98e8-2fef1b26481b"
        }
      ]
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.18:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.16:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.15:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.14:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.13:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.12:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.17:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.10:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:sensiolabs:symfony:2.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2012-6431"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Symfony 2.0.x before 2.0.20 does not process URL encoded data consistently within the Routing and Security components, which allows remote attackers to bypass intended URI restrictions via a doubly encoded string."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-264"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://symfony.com/blog/security-release-symfony-2-0-20-and-2-1-5-released"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 6.4,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 4.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2013-01-07T05:00Z",
      "publishedDate": "2012-12-27T11:47Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2012-6431

Vulnerability from cvelistv5

fkie_cve-2012-6431

Vulnerability from fkie_nvd

ghsa-83c3-qx27-2rwr

Vulnerability from github

gsd-2012-6431

Vulnerability from gsd

Tags

Sightings

Nomenclature