CVE-2023-46734
MEDIUM6.1EPSS 2.6%Symfony potential Cross-site Scripting vulnerabilities in CodeExtension filters
Published: 11/12/2023Modified: 2/16/2024
Description
### Description Some Twig filters in CodeExtension use "is_safe=html" but don't actually ensure their input is safe. ### Resolution Symfony now escapes the output of the affected filters. The patch for this issue is available [here](https://github.com/symfony/symfony/commit/9da9a145ce57e4585031ad4bee37c497353eec7c) for branch 4.4. ### Credits We would like to thank Pierre Rudloff for reporting the issue and to Nicolas Grekas for providing the fix.
Affected packages (5)
- Bitnami/symfony>= 2.0.0, < 4.4.51, >= 5.0.0, < 5.4.31, >= 6.0.0, < 6.3.8
- Debian/symfonyfrom 0, < 4.4.19+dfsg-2+deb11u4
- Debian/symfonyfrom 0, < 3.4.22+dfsg-2+deb10u3
- Packagist/symfony/symfony>= 2.0.0, < 4.4.51
- Packagist/symfony/twig-bridge>= 2.0.0, < 4.4.51
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM6.1 | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N |
References (9)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2023-46734
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2023-46734
- PATCHhttps://github.com/symfony/symfony
- WEBhttps://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2023-46734.yaml
- WEBhttps://github.com/symfony/symfony/commit/5d095d5feb1322b16450284a04d6bb48d1198f54
- WEBhttps://github.com/symfony/symfony/commit/9da9a145ce57e4585031ad4bee37c497353eec7c
- WEBhttps://github.com/symfony/symfony/security/advisories/GHSA-q847-2q57-wmr3
- WEBhttps://lists.debian.org/debian-lts-announce/2023/11/msg00019.html
- WEBhttps://symfony.com/cve-2023-46734