[MEDIUM] Routes behind a firewall are accessible even when not logged in

PKSA-468d-qs45-4h29 CVE-2012-6431 GHSA-83c3-qx27-2rwr

Affected package: symfony/security

Affected version: >=2.0.0,<2.0.19

Reported by:
GitHub, FriendsOfPHP/security-advisories