Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2023-46695

Опубликовано: 02 нояб. 2023
Источник: debian
EPSS Низкий

Описание

An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
python-djangonot-affectedpackage

Примечания

  • https://www.djangoproject.com/weblog/2023/nov/01/security-releases/

EPSS

Процентиль: 87%
0.03589
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2023-46695

CVSS3: 7.5
ubuntu
больше 1 года назад

An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.

redhat логотип

CVE-2023-46695

CVSS3: 7.5
redhat
больше 1 года назад

An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.

nvd логотип

CVE-2023-46695

CVSS3: 7.5
nvd
больше 1 года назад

An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.

github логотип

GHSA-qmf9-6jqf-j8fq

CVSS3: 7.5
github
больше 1 года назад

Django potential denial of service vulnerability in UsernameField on Windows

fstec логотип

BDU:2023-08741

CVSS3: 7.5
fstec
больше 1 года назад

Уязвимость программной платформы для веб-приложений Django, связанная c неограниченным распределением ресурсов, позволяющая нарушителю вызвать отказ в обслуживании (DoS)

EPSS

Процентиль: 87%
0.03589
Низкий