A vulnerability was found in Symfony up to 6.4.39/7.4.11/8.0.11. It has been rated as critical. Affected by this vulnerability is the function verifyClaims of the component Security. Performing a manipulation of the argument aud/iss/exp results in improper input validation.

This vulnerability is cataloged as CVE-2026-45069. It is possible to initiate the attack remotely. There is no exploit available.