Описание
A flaw was found in Django. A remote attacker can exploit an ambiguous mapping of header variants (with hyphens or underscores) to a single version with underscores in ASGIRequest. This vulnerability allows the attacker to spoof headers, potentially leading to unauthorized actions or misdirection within the application.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Ansible Automation Platform 2 | automation-controller | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/automation-reports | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/controller-rhel9 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/eda-controller-rhel9 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/gateway-rhel9 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/hub-rhel9 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/lightspeed-rhel8 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/lightspeed-rhel9 | Fix deferred | ||
| Red Hat Ansible Automation Platform 2 | redhat-user-workloads/metrics-service-rhel9 | Fix deferred | ||
| Red Hat Discovery 2 | redhat-user-workloads/discovery-server | Fix deferred |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
5.3 Medium
CVSS3
Связанные уязвимости
An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. `ASGIRequest` allows a remote attacker to spoof headers by exploiting an ambiguous mapping of two header variants (with hyphens or with underscores) to a single version with underscores. Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected. Django would like to thank Tarek Nakkouch for reporting this issue.
An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. `ASGIRequest` allows a remote attacker to spoof headers by exploiting an ambiguous mapping of two header variants (with hyphens or with underscores) to a single version with underscores. Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected. Django would like to thank Tarek Nakkouch for reporting this issue.
An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4. ...
Django vulnerable to ASGI header spoofing via underscore/hyphen conflation
EPSS
5.3 Medium
CVSS3