Vulnerability Description
In Symfony before versions 4.4.7 and 5.0.7, when a `Response` does not contain a `Content-Type` header, affected versions of Symfony can fallback to the format defined in the `Accept` header of the request, leading to a possible mismatch between the response's content and `Content-Type` header. When the response is cached, this can prevent the use of the website by other users. This has been patched in versions 4.4.7 and 5.0.7.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sensiolabs | Symfony | >= 4.4.0, < 4.4.7 |
Related Weaknesses (CWE)
References
- https://github.com/symfony/symfony/commit/dca343442e6a954f96a2609e7b4e9c21ed6d74PatchThird Party Advisory
- https://github.com/symfony/symfony/security/advisories/GHSA-mcx4-f5f5-4859Third Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://symfony.com/blog/cve-2020-5255-prevent-cache-poisoning-via-a-response-coThird Party Advisory
- https://github.com/symfony/symfony/commit/dca343442e6a954f96a2609e7b4e9c21ed6d74PatchThird Party Advisory
- https://github.com/symfony/symfony/security/advisories/GHSA-mcx4-f5f5-4859Third Party Advisory
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedorapro
- https://symfony.com/blog/cve-2020-5255-prevent-cache-poisoning-via-a-response-coThird Party Advisory
FAQ
What is CVE-2020-5255?
CVE-2020-5255 is a vulnerability with a CVSS score of 2.6 (LOW). In Symfony before versions 4.4.7 and 5.0.7, when a `Response` does not contain a `Content-Type` header, affected versions of Symfony can fallback to the format defined in the `Accept` header of the re...
How severe is CVE-2020-5255?
CVE-2020-5255 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-5255?
Check the references section above for vendor advisories and patch information. Affected products include: Sensiolabs Symfony.