Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-45230

Опубликовано: 08 окт. 2024
Источник: nvd
CVSS3: 7.5
EPSS Низкий

Описание

An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*
Версия от 4.2.0 (включая) до 4.2.16 (исключая)
cpe:2.3:a:djangoproject:django:*:*:*:*:*:*:*:*
Версия от 5.0 (включая) до 5.0.9 (исключая)
cpe:2.3:a:djangoproject:django:5.1:*:*:*:*:*:*:*

EPSS

Процентиль: 35%
0.00137
Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo
CWE-120

Связанные уязвимости

ubuntu логотип

CVE-2024-45230

CVSS3: 7.5
ubuntu
8 месяцев назад

An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.

redhat логотип

CVE-2024-45230

CVSS3: 5.9
redhat
10 месяцев назад

An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.

debian логотип

CVE-2024-45230

CVSS3: 7.5
debian
8 месяцев назад

An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, ...

suse-cvrf логотип

SUSE-SU-2024:3187-1

suse-cvrf
9 месяцев назад

Security update for python-Django

github логотип

GHSA-5hgc-2vfp-mqvc

CVSS3: 5.3
github
8 месяцев назад

Django vulnerable to denial-of-service attack via the urlize() and urlizetrunc() template filters

EPSS

Процентиль: 35%
0.00137
Низкий

7.5 High

CVSS3

Дефекты

NVD-CWE-noinfo
CWE-120