CVE-2015-5723: Security Misconfiguration Vulnerability

June 7, 2016 (updated November 28, 2016)

Doctrine uses mkdir($cacheDirectory ) to create caches directories. if your application runs with a umask of

References

www.cve.mitre.org/cgi-bin/cvename.cgi?name=2015-5723
www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.html

Detect and mitigate CVE-2015-5723 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →