[HIGH] CVE-2020-5275: All rules set in "access_control" are required when the firewall is configured with the unanimous strategy

PKSA-wq3f-5n85-pkzw CVE-2020-5275 GHSA-g4m9-5hpf-hx72

Affected package: symfony/symfony

Affected version: >=4.4.0,<4.4.7|>=5.0.0,<5.0.7

Reported by:
GitHub, FriendsOfPHP/security-advisories