Vulnerability Details CVE-2017-11365
Certain Symfony products are affected by: Incorrect Access Control. This affects Symfony 2.7.30 and Symfony 2.8.23 and Symfony 3.2.10 and Symfony 3.3.3. The type of exploitation is: remote. The component is: Password validator.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.2%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
References
Products affected by CVE-2017-11365
-
cpe:2.3:a:sensiolabs:symfony:2.7.30
-
cpe:2.3:a:sensiolabs:symfony:2.8.23
-
cpe:2.3:a:sensiolabs:symfony:3.2.10
-
cpe:2.3:a:sensiolabs:symfony:3.3.3