CVE-2020-5274
MEDIUM4.6EPSS 0.27%Exceptions displayed in non-debug configurations in Symfony
描述
Description ----------- When `ErrorHandler` renders an exception HTML page, it uses un-escaped properties from the related Exception class to render the stacktrace. The security issue comes from the fact that the stacktraces were also displayed in non-`debug` environments. Resolution ---------- The `ErrorHandler` class now escapes all properties coming from the related Exception, and the stacktrace is not displayed anymore in non-`debug` environments. The patches for this issue are available [here](https://github.com/symfony/symfony/commit/cf80224589ac05402d4f72f5ddf80900ec94d5ad) and [here](https://github.com/symfony/symfony/commit/629d21b800a15dc649fb0ae9ed7cd9211e7e45db) for branch 4.4. Credits ------- I would like to thank Luka Sikic for reporting & Yonel Ceruto and Jérémy Derussé for fixing the issue.
受影響套件(4)
- Bitnami/symfony>= 4.4.0, < 4.4.4, >= 5.0.0, < 5.0.4
- Debian/symfonyfrom 0, < 4.4.8-1
- Packagist/symfony/error-handler>= 4.4.0, < 4.4.4
- Packagist/symfony/symfony>= 4.4.0, < 4.4.4
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.6 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N |
參考連結(8)
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2020-5274
- ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2020-5274
- WEBhttps://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/error-handler/CVE-2020-5274.yaml
- WEBhttps://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2020-5274.yaml
- WEBhttps://github.com/symfony/symfony/commit/629d21b800a15dc649fb0ae9ed7cd9211e7e45db
- WEBhttps://github.com/symfony/symfony/commit/cf80224589ac05402d4f72f5ddf80900ec94d5ad
- WEBhttps://github.com/symfony/symfony/security/advisories/GHSA-m884-279h-32v2
- WEBhttps://symfony.com/cve-2020-5274