CVE-2024-36611 | Symfony 7.07 FormLoginAuthenticator username/password authorization
A vulnerability was found in Symfony 7.07. It has been declared as critical. This vulnerability affects unknown code of the component FormLoginAuthenticator. The manipulation of the argument username/password leads to incorrect authorization.
This vulnerability was named CVE-2024-36611. The attack needs to be done within the local network. There is no exploit available.
It is recommended to apply a patch to fix this issue.