CVE-2017-16652

MEDIUM

Symfony <2.7.38, <2.8.31, <3.2.14, <3.3.13 - Open Redirect

Title source: llm

Description

An issue was discovered in Symfony 2.7.x before 2.7.38, 2.8.x before 2.8.31, 3.2.x before 3.2.14, and 3.3.x before 3.3.13. DefaultAuthenticationSuccessHandler or DefaultAuthenticationFailureHandler takes the content of the _target_path parameter and generates a redirect response, but no check is performed on the path, which could be an absolute URL to an external domain. This Open redirect vulnerability can be exploited for example to mount effective phishing attacks.

References (2)

Core 2

Core References

Vendor Advisory x_refsource_confirm

https://symfony.com/blog/cve-2017-16652-open-redirect-vulnerability-on-security-handlers

Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2019/03/msg00009.html

Scores

CVSS v3 6.1

EPSS 0.0095

EPSS Percentile 56.5%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE

CWE-601

Status published

Products (5)

debian/debian_linux 8.0

sensiolabs/symfony 2.7.0 - 2.7.38

symfony/security 2.7.0 - 2.7.38Packagist

symfony/security-http 2.7.0 - 2.7.38Packagist

symfony/symfony 2.7.0 - 2.7.38Packagist

Published Jun 13, 2018

Tracked Since Feb 18, 2026