National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Vulnerability Change Record for CVE-2016-2403

Change History

Initial Analysis - 2/28/2017 12:38:14 PM

Action Type Old Value New Value
Changed Reference Type
http://symfony.com/blog/cve-2016-2403-unauthorized-access-on-a-misconfigured-ldap-server-when-using-an-empty-password No Types Assigned
http://symfony.com/blog/cve-2016-2403-unauthorized-access-on-a-misconfigured-ldap-server-when-using-an-empty-password Vendor Advisory
Changed Reference Type
http://www.securityfocus.com/bid/96137 No Types Assigned
http://www.securityfocus.com/bid/96137 Third Party Advisory, VDB Entry
Added CWE
CWE-287
Added CVSS V2
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CPE Configuration
OR
     *cpe:2.3:a:sensiolabs:symfony:2.8.0:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:2.8.1:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:2.8.2:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:2.8.3:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:2.8.4:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:2.8.5:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.0:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.1:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.2:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.3:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.4:*:*:*:*:*:*:*
     *cpe:2.3:a:sensiolabs:symfony:3.0.5:*:*:*:*:*:*:*