CVE-2018-19790

Published: 18 December 2018

An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the `_failure_path` input field of login forms, an attacker can work around the redirection target restrictions and effectively redirect the user to any domain after login.

Priority

Medium

CVSS 3 base score: 6.1

Status

Package Release Status
symfony
Launchpad, Ubuntu, Debian
Upstream
Released (3.4.20+dfsg-1)
Ubuntu 21.04 (Hirsute Hippo) Not vulnerable
(3.4.20+dfsg-1)
Ubuntu 20.10 (Groovy Gorilla) Not vulnerable
(3.4.20+dfsg-1)
Ubuntu 20.04 LTS (Focal Fossa) Not vulnerable
(3.4.20+dfsg-1)
Ubuntu 18.04 LTS (Bionic Beaver) Needed

Ubuntu 16.04 ESM (Xenial Xerus) Ignored
(end of standard support, was needed)
Ubuntu 14.04 ESM (Trusty Tahr) Does not exist