VDB

CVE-2019-10911

CVE-2019-10911 PUBLISHED

In Symfony before 2.7.51, 2.8.x before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, a vulnerability would allow an attacker to authenticate as a privileged user on sites with user registration and remember me login functionality enabled. This is related to symfony/security.

EPSS 0.27% · 50.9th percentile

Risk Scores

EPSS Score
0.27%
50.9th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSsymfony0, 2.7.1+dfsg-1, 2.7.5+dfsg-1
Ubuntu:Pro:18.04:LTSsymfony0, *, 3.4.3+dfsg-1ubuntu4

Timeline

  • Apr 17, 2019 CVE Published
  • Apr 14, 2021 EPSS Score
  • Jun 23, 2021 EPSS Score
  • Oct 5, 2021 EPSS Score
  • Oct 11, 2021 EPSS Score
  • Oct 26, 2021 EPSS Score
  • Dec 27, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 28, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • May 1, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›