symfony/http-kernel vulnerabilities

Symfony HttpKernel Component

Latest version: v5.0.3

Continuously find & fix vulnerabilities like these in your dependencies. Test and protect your applications

Direct Vulnerabilities

Known vulnerabilities in the symfony/http-kernel package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability Vulnerable versions Snyk patch Published
  • M
Timing Attack
>=2.8.0, <2.8.52,>=3.4.0, <3.4.35,>=4.2.0, <4.2.12,>=4.3.0, <4.3.8 Not available 22 Nov, 2019
  • M
Access Restriction Bypass
>=2.3.19, <2.3.29,>=2.6.0, <2.6.8,>=2.4.9, <2.5.0,>=2.5.4, <2.5.12 Not available 26 May, 2015
  • M
Arbitrary Code Injection
>=2.3.0, <2.3.27,>=2.6.0, <2.6.6,>=2.1.0, <2.2.0,>=2.4.0, <2.5.0,>=2.5.0, <2.5.11,>=2.2.0, <2.3.0,>=2.0.0, <2.1.0 Not available 01 Apr, 2015
  • L
Information Exposure
>=2.3.0, <2.3.19,>=2.1.0, <2.2.0,>=2.4.0, <2.4.9,>=2.5.0, <2.5.4,>=2.2.0, <2.3.0,>=2.0.0, <2.1.0 Not available 03 Sep, 2014