CVE-2013-1397
Published Jun 2, 2014
Last updated 7 years ago
Overview
- Description
- Symfony 2.0.x before 2.0.22, 2.1.x before 2.1.7, and 2.2.x remote attackers to execute arbitrary PHP code via a serialized PHP object to the (1) Yaml::parse or (2) Yaml\Parser::parse function, a different vulnerability than CVE-2013-1348.
- Source
- cve@mitre.org
- NVD status
- Modified
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-94
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "379F1431-3466-4263-8C02-D6541E593F65"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7CBEC708-96A2-43DD-88C0-9407ABB6D4FF"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "56B52BED-2996-4C96-A348-98A8C72C8EA2"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C6279E7-F362-4C13-A965-908BCF9C30E3"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5A101B27-9AE7-4C04-80BC-03A981217782"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3360BFF1-89ED-4294-A503-835C9C40C7D7"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CE78FEA0-42E8-463C-9C7C-C778F712BB0F"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF5CEE9C-822C-491F-841C-218AA21C0AD1"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "822F9083-5542-41AA-B9FA-1B43DE633340"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "165F68AE-AB34-4C20-88C6-56210548242B"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B13BE7AA-72FD-402D-8919-BC5F23D03EFD"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34B1B511-5EBC-4301-A561-AE15B63DFC74"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.12:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8AF62D2D-2D62-4F15-83CD-F635DC838031"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.13:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B3A8431-356C-498F-AAEA-EC8D05D74877"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.14:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E53A27F2-9C3D-4670-BE1E-A1F6994EF1CA"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "18DEB929-6B35-488B-80BF-70448BF7A6F0"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.16:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2EB03E2D-F137-4CBA-887D-D1461735C958"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.17:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D37175A7-C937-4758-8EED-BE24C43AA115"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.18:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1EF598F-F8F6-4980-BC76-C2FAF8FE7AF8"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.19:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3CD1432-1C91-4DFE-86E0-E5E97775A425"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "768F171C-3625-4696-ACEC-A10FA70F6BF7"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.0.21:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "55B048CA-DDD8-473A-88D5-1AA36B134F1B"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D7CD9AD6-5303-41C3-848B-504BFC03307D"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1175DE26-53D0-4411-8416-C60602A097D3"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88E95571-E3F3-4D8F-A03C-C95317D7C4CC"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "08CEC939-1319-475E-AE3B-5BFB3D05A38A"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B1DB3966-94A2-4154-8449-09C4E44127D1"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E5E16EB7-BA1C-4B49-A466-68EC0067D432"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.1.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DD23E22-222D-4933-B534-B1E91807D6BB"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F79CDFB3-9BE8-4D29-90D0-9A14A7478CE6"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE2FA705-1052-4938-9177-A16CC317C0A4"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "078D5869-B3E3-4046-A942-B63921AD19DB"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "098D9DD8-2113-48BA-A31C-75ED36F010CC"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DCEE5787-51E2-40EC-8B6E-FCA049E88381"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2CFBB031-DD47-41AB-BC38-D006F6C94FCD"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37873421-811B-45C7-9C75-CF92DEBD8DC3"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B692349E-6ACF-4F39-B334-EB649C03C008"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9FCDA8E2-61B1-49D1-B99D-3FDB640B3D3F"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B7B2F5DA-6679-4720-A296-FD06A0AE62C2"
},
{
"criteria": "cpe:2.3:a:sensiolabs:symfony:2.2.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "68CFDDF0-86AF-4360-BBA3-C8D4D23F28E2"
}
],
"operator": "OR"
}
]
}
]