CVE-2017-16652

Published: 13 June 2018

An issue was discovered in Symfony 2.7.x before 2.7.38, 2.8.x before 2.8.31, 3.2.x before 3.2.14, and 3.3.x before 3.3.13. DefaultAuthenticationSuccessHandler or DefaultAuthenticationFailureHandler takes the content of the _target_path parameter and generates a redirect response, but no check is performed on the path, which could be an absolute URL to an external domain. This Open redirect vulnerability can be exploited for example to mount effective phishing attacks.

Priority

Medium

CVSS 3 base score: 6.1

Status

Package Release Status
symfony
Launchpad, Ubuntu, Debian
Upstream
Released (3.4.0+dfsg-1)
Ubuntu 20.10 (Groovy Gorilla) Not vulnerable
(3.4.15+dfsg-2ubuntu4)
Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable
(3.4.15+dfsg-2ubuntu4)
Ubuntu 18.04 LTS (Bionic Beaver) Not vulnerable
(3.4.6+dfsg-1)
Ubuntu 16.04 LTS (Xenial Xerus) Needed

Ubuntu 14.04 ESM (Trusty Tahr) Does not exist