CVE-2023-46734

Description

Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Starting in versions 2.0.0, 5.0.0, and 6.0.0 and prior to versions 4.4.51, 5.4.31, and 6.3.8, some Twig filters in CodeExtension use `is_safe=html` but don't actually ensure their input is safe. As of versions 4.4.51, 5.4.31, and 6.3.8, Symfony now escapes the output of the affected filters.

How to fix CVE-2023-46734

To remediate CVE-2023-46734, upgrade the affected package to a fixed version below.

• —upgrade to 4.4.51 or later
• —upgrade to 4.4.19+dfsg-2+deb11u4 or later
• —upgrade to 3.4.22+dfsg-2+deb10u3 or later
• —upgrade to 4.4.51 or later
• —upgrade to 4.4.51 or later

Is CVE-2023-46734 being exploited?

Low — EPSS is 2.6%, meaning exploitation activity has not been observed at scale.

Affected packages (5)

• >= 2.0.0, < 4.4.51, >= 5.0.0, < 5.4.31, >= 6.0.0, < 6.3.8
• from 0, < 4.4.19+dfsg-2+deb11u4
• from 0, < 3.4.22+dfsg-2+deb10u3
• >= 2.0.0, < 4.4.51
• >= 2.0.0, < 4.4.51

CVSS scores

References (9)

• ADVISORYnvd.nist.gov/vuln/detail/CVE-2023-46734
• ADVISORYsecurity-tracker.debian.org/tracker/CVE-2023-46734
• PATCHgithub.com/symfony/symfony
• WEBgithub.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2023-46734.yaml