Security Advisory

CVE-2024-36611

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-29 00:00:00

Last updated 2025-01-06 17:44:44

Assigner mitre

State PUBLISHED

Description

In Symfony v7.07, a security vulnerability was identified in the FormLoginAuthenticator component, where it failed to adequately handle cases where the username or password field of a login request is empty. This flaw could lead to various security risks, including improper authentication logic handling or denial of service. NOTE: the Supplier has concluded that this is a false report.

← Browse all CVEs View on cve.org ↗