CVE-2021-41267

Name of the Vulnerable Software and Affected Versions Symfony/Http-Kernel versions 5.2 through 5.3.11

Description The issue arises from the accessibility of the X-Forwarded-Prefix header in sub-requests, even when it is not part of the "trusted headers" allowed list. This allows an attacker to forge requests containing the X-Forwarded-Prefix header, leading to a web cache poisoning issue. The vulnerability can be exploited when a Symfony application is running behind a proxy or a load-balancer.

Recommendations For Symfony/Http-Kernel versions 5.2 through 5.3.11, update to version 5.3.12 or later to ensure that the X-Forwarded-Prefix header is not forwarded to sub-requests when it is not trusted. As a temporary workaround, consider restricting access to the X-Forwarded-Prefix header in sub-requests to minimize the risk of exploitation.