CVE-2013-4752

Description

Symfony Host Header Injection vulnerability in the HttpFoundation component

Predictions

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

References

• https://nvd.nist.gov/vuln/detail/CVE-2013-4752
• https://web.archive.org/web/20130901060826/http://www.securityfocus.com/bid/61715
• https://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released
• https://github.com/symfony/symfony
• https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2013-4752.yaml
• https://github.com/FriendsOfPHP/security-advisories/blob/master/symfony/http-foundation/CVE-2013-4752.yaml
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86374
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86373
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86372
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86371
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86370
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86369
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86368
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86367
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86366
• https://exchange.xforce.ibmcloud.com/vulnerabilities/86365
• https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2013-4752
• http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114450.html
• http://lists.fedoraproject.org/pipermail/package-announce/2013-August/114461.html
• http://symfony.com/blog/security-releases-symfony-2-0-24-2-1-12-2-2-5-and-2-3-3-released