NVD - CVE-2022-24895

Vulnerability Change Records for CVE-2022-24895

Change History

Initial Analysis by NIST 2/15/2023 9:25:50 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:a:sensiolabs:symfony::::::::* versions from (including) 2.0.0 up to (excluding) 4.4.50 cpe:2.3:a:sensiolabs:symfony::::::::* versions from (including) 5.0.0 up to (excluding) 5.4.20 cpe:2.3:a:sensiolabs:symfony::::::::* versions from (including) 6.0.0 up to (excluding) 6.0.20 cpe:2.3:a:sensiolabs:symfony::::::::* versions from (including) 6.1.0 up to (excluding) 6.1.12 cpe:2.3:a:sensiolabs:symfony::::::::* versions from (including) 6.2.0 up to (excluding) 6.2.6
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Changed	Reference Type	https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security-bundle/CVE-2022-24895.yaml No Types Assigned	https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security-bundle/CVE-2022-24895.yaml Issue Tracking
Changed	Reference Type	https://github.com/symfony/security-bundle/commit/076fd2088ada33d760758d98ff07ddedbf567946 No Types Assigned	https://github.com/symfony/security-bundle/commit/076fd2088ada33d760758d98ff07ddedbf567946 Patch
Changed	Reference Type	https://github.com/symfony/symfony/commit/5909d74ecee359ea4982fcf4331aaf2e489a1fd4 No Types Assigned	https://github.com/symfony/symfony/commit/5909d74ecee359ea4982fcf4331aaf2e489a1fd4 Patch
Changed	Reference Type	https://github.com/symfony/symfony/security/advisories/GHSA-3gv2-29qc-v67m No Types Assigned	https://github.com/symfony/symfony/security/advisories/GHSA-3gv2-29qc-v67m Patch, Third Party Advisory