Ghostwire

CVE-2026-45074: Symfony's Cas2Handler Derives CAS service URL from Client Host Header → Cross-Service Ticket Replay

MEDIUM CVSS 5.5 Exploit Available

Published: May 27, 2026 | Last Modified: May 27, 2026

Description

Symfony's Cas2Handler Derives CAS service URL from Client Host Header → Cross-Service Ticket Replay

Ghostwire Analysis — What This Means Practically

Medium CVSS score indicates moderate risk — exploitation requires specific conditions or results in limited impact.
Exploit code is reported to be available, increasing the likelihood of active exploitation.

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

References

github.com/symfony/symfony/security/advisories/GHSA-j8gj-9rm5-4xhx
github.com/symfony/symfony/commit/5ba145dba702404801bdf9e7e8d6df170060d541
github.com/FriendsOfPHP/security-advisories/blob/master/symfony/security-http/CV
github.com/FriendsOfPHP/security-advisories/blob/master/symfony/symfony/CVE-2026
symfony.com/cve-2026-45074
github.com/advisories/GHSA-j8gj-9rm5-4xhx
www.tenable.com/cve/CVE-2026-45074
www.cnnvd.org.cn/home/globalSearch?keyword=CVE-2026-45074