CVE-2026-49208 | Symfony up to 2.35.x/3.0.x LiveComponent hydrateObjectValue input validation

SecurityVulns

A vulnerability classified as critical was found in Symfony up to 2.35.x/3.0.x. Affected is the function hydrateObjectValue of the component LiveComponent. Such manipulation of the argument Value leads to improper input validation.

This vulnerability is uniquely identified as CVE-2026-49208. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More