Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-4050

EPSS 76.19% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-4050

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
FragmentListener in the HttpKernel component in Symfony 2.3.19 through 2.3.28, 2.4.9 through 2.4.10, 2.5.4 through 2.5.11, and 2.6.0 through 2.6.7, when ESI or SSI support enabled, does not check if the _controller attribute is set, which allows remote attackers to bypass URL signing and security rules by including (1) no hash or (2) an invalid hash in a request to /_fragment.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Sensio Labs Symfony HttpKernel组件权限许可和访问控制漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Sensio Labs Symfony是法国Sensio Labs公司的一套免费的、基于MVC架构的PHP开发框架。该框架提供常用的功能组件及工具,可用于快速创建复杂的WEB程序。HttpKernel是其中的一个通过利用EventDispatcher组件将请求换转为响应的结构化进程组件。 Sensio Labs Symfony的HttpKernel组件中的FragmentListener存在安全漏洞,该漏洞源于程序启用ESI或SSI支持时,没有检查是否设置_controller属性。远程攻击者可通过向/_
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-4050

#POC DescriptionSource LinkShenlong Link
1Symfony 2.3.19 through 2.3.28, 2.4.9 through 2.4.10, 2.5.4 through 2.5.11, and 2.6.0 through 2.6.7, when ESI or SSI support enabled, does not check if the _controller attribute is set, which allows remote attackers to bypass URL signing and security rules by including (1) no hash or (2) an invalid hash in a request to /_fragment in the HttpKernel component.https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2015/CVE-2015-4050.yamlPOC Details
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-4050

登录查看更多情报信息。

Same Patch Batch · n/a · 2015-06-02 · 19 CVEs total

CVE-2015-4094Thycotic Password Manager Secret Server应用程序加密问题漏洞
CVE-2015-4162Palo Alto Networks PAN-OS XML外部实体漏洞
CVE-2015-4161SAP Afaria 权限许可和访问控制漏洞
CVE-2015-4160SAP ASE Database Platform SQL注入漏洞
CVE-2015-4159SAP HANA Web-based Development Workbench SQL注入漏洞
CVE-2015-4158SAP ABAP & Java Server 拒绝服务漏洞
CVE-2015-4157SAP Content Server 拒绝服务漏洞
CVE-2015-4156GNU Parallel 后置链接漏洞
CVE-2015-4155GNU Parallel 后置链接漏洞
CVE-2014-0999Sendio ESP 信息泄露漏洞
CVE-2015-3982Django cached_db后台安全漏洞
CVE-2015-2944Apache Sling API和Sling Servlets 跨站脚本漏洞
CVE-2015-2282多款SAP产品基于栈的缓冲区溢出漏洞
CVE-2015-2278多款SAP产品拒绝服务漏洞
CVE-2015-1945IBM InfoSphere Master Data Management Reference Data Management组件权限许可和访问控制漏洞
CVE-2015-0850FusionForge Git插件输入验证漏洞
CVE-2015-0759Cisco Headend Digital Broadband Delivery System 跨站请求伪造漏洞
CVE-2014-8391Sendio ESP 信息泄露漏洞

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-4050

No comments yet

Leave a comment