How severe is CVE-2020-5255?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.3 out of 10.

What type of vulnerability is CVE-2020-5255?

This is classified as CWE-435, which is a common weakness in software security.

CVE-2020-5255

MEDIUM Year: 2020

CVSS v3 Score

4.3

Medium

CVSS v2 Score

4.0

Medium

Weakness Type

CWE-435

View all →

Vulnerability Description

In Symfony before versions 4.4.7 and 5.0.7, when a `Response` does not contain a `Content-Type` header, affected versions of Symfony can fallback to the format defined in the `Accept` header of the request, leading to a possible mismatch between the response's content and `Content-Type` header. When the response is cached, this can prevent the use of the website by other users. This has been patched in versions 4.4.7 and 5.0.7.

CVE-2023-43052

MEDIUM

CVSS:5.3(Medium)

IBM Control Center 6.2.1 through 6.3.1 is vulnerable to an external service interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability...

CWE-4352023

CVE-2021-34699

HIGH

CVSS:7.7(High)

A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to an i...

CWE-4352021

CVE-2023-43052

MEDIUM

CVSS:5.3(Medium)

CWE-4352023

CVE-2020-5255

Vulnerability Description

Related Vulnerabilities

CVE-2023-43052

CVE-2021-34699

CVE-2023-43052