Name of the Vulnerable Software and Affected Versions: FOSUserBundle versions prior to 1.2.1

Description: The issue is related to user identity validation, where user refreshing was performed using the primary key instead of the username. This could lead to a potential security risk if a user is allowed to change their username.

Recommendations: For versions prior to 1.2.1, update to version 1.2.1 to address the issue, as it loads the user using the primary key during refreshing.