PKSA-2672-j1r9-dm6x Security Advisory
-
[CRITICAL] CVE-2017-11365: Empty passwords validation issue
PKSA-2672-j1r9-dm6x CVE-2017-11365 GHSA-q87v-q8fw-gmj5
Affected package: symfony/security-core
Affected version: >=2.7.30,<2.7.32|>=2.8.23,<2.8.25|>=3.2.10,<3.2.12|>=3.3.3,<3.3.5
Reported by:
GitHub, FriendsOfPHP/security-advisories