CVE-2023-46735 - Vulnerability Details - OpenCVE

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in `WebhookController` returns unescaped user-submitted input. As of version 6.3.8, `WebhookController` now doesn't return any user-submitted input in its response.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.02516.

Key SSVC decision points have not yet been added.

Vendors	Products
Sensiolabs Subscribe	Symfony Subscribe

Configuration 1 [-]

cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2023-2904	Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in `WebhookController` returns unescaped user-submitted input. As of version 6.3.8, `WebhookController` now doesn't return any user-submitted input in its response.
Github GHSA	GHSA-72x2-5c85-6wmr	Symfony potential Cross-site Scripting in WebhookController

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962
https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr

History

No history.

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published: 2023-11-10T17:58:18.136Z

Updated: 2024-09-03T15:24:36.945Z

Reserved: 2023-10-25T14:30:33.752Z

Link: CVE-2023-46735

Vulnrichment

Updated: 2024-08-02T20:53:21.541Z

NVD

Status : Modified

Published: 2023-11-10T18:15:09.657

Modified: 2024-11-21T08:29:11.517

Link: CVE-2023-46735

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-79

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-46735", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2023-10-25T14:30:33.752Z", "datePublished": "2023-11-10T17:58:18.136Z", "dateUpdated": "2024-09-03T15:24:36.945Z"}, "containers": {"cna": {"title": "Symfony potential Cross-site Scripting in WebhookController", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr"}, {"name": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "tags": ["x_refsource_MISC"], "url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962"}], "affected": [{"vendor": "symfony", "product": "symfony", "versions": [{"version": ">= 6.3.0, < 6.3.8", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-11-10T17:58:18.136Z"}, "descriptions": [{"lang": "en", "value": "Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in `WebhookController` returns unescaped user-submitted input. As of version 6.3.8, `WebhookController` now doesn't return any user-submitted input in its response."}], "source": {"advisory": "GHSA-72x2-5c85-6wmr", "discovery": "UNKNOWN"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:53:21.541Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr"}, {"name": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-09-03T15:14:14.893233Z", "id": "CVE-2023-46735", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T15:24:36.945Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "name": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "name": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:53:21.541Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2023-46735", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-09-03T15:14:14.893233Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-09-03T15:24:31.086Z"}}], "cna": {"title": "Symfony potential Cross-site Scripting in WebhookController", "source": {"advisory": "GHSA-72x2-5c85-6wmr", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "symfony", "product": "symfony", "versions": [{"status": "affected", "version": ">= 6.3.0, < 6.3.8"}]}], "references": [{"url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "name": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "name": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in `WebhookController` returns unescaped user-submitted input. As of version 6.3.8, `WebhookController` now doesn't return any user-submitted input in its response."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2023-11-10T17:58:18.136Z"}}}, "cveMetadata": {"cveId": "CVE-2023-46735", "state": "PUBLISHED", "dateUpdated": "2024-09-03T15:24:36.945Z", "dateReserved": "2023-10-25T14:30:33.752Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2023-11-10T17:58:18.136Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:sensiolabs:symfony:*:*:*:*:*:*:*:*", "matchCriteriaId": "0056B4D3-0C63-467F-A308-EB5DEE894B85", "versionEndExcluding": "6.3.8", "versionStartIncluding": "6.0.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in version 6.0.0 and prior to version 6.3.8, the error message in `WebhookController` returns unescaped user-submitted input. As of version 6.3.8, `WebhookController` now doesn't return any user-submitted input in its response."}, {"lang": "es", "value": "Symfony es un framework PHP para aplicaciones web y de consola y un conjunto de componentes PHP reutilizables. A partir de la versi\u00f3n 6.0.0 y anteriores a la versi\u00f3n 6.3.8, el mensaje de error en `WebhookController` devuelve informaci\u00f3n enviada por el usuario sin formato de escape. A partir de la versi\u00f3n 6.3.8, `WebhookController` ahora no devuelve ninguna entrada enviada por el usuario en su respuesta."}], "id": "CVE-2023-46735", "lastModified": "2024-11-21T08:29:11.517", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-10T18:15:09.657", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962"}, {"source": "security-advisories@github.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/symfony/symfony/commit/8128c302430394f639e818a7103b3f6815d8d962"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://github.com/symfony/symfony/security/advisories/GHSA-72x2-5c85-6wmr"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security-advisories@github.com", "type": "Secondary"}]}