Количество 8
Количество 8
GHSA-2hrw-hx67-34x6
Resource exhaustion in Django
CVE-2023-24580
An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack.
CVE-2023-24580
An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack.
CVE-2023-24580
An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack.
CVE-2023-24580
An issue was discovered in the Multipart Request Parser in Django 3.2 ...
openSUSE-SU-2023:0075-1
Security update for python-Django
openSUSE-SU-2023:0062-1
Security update for python-Django
BDU:2023-09100
Уязвимость программной платформы для веб-приложений Django, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| GHSA-2hrw-hx67-34x6 Resource exhaustion in Django | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
 | CVE-2023-24580 An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack. | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
 | CVE-2023-24580 An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack. | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
 | CVE-2023-24580 An issue was discovered in the Multipart Request Parser in Django 3.2 before 3.2.18, 4.0 before 4.0.10, and 4.1 before 4.1.7. Passing certain inputs (e.g., an excessive number of parts) to multipart forms could result in too many open files or memory exhaustion, and provided a potential vector for a denial-of-service attack. | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
| CVE-2023-24580 An issue was discovered in the Multipart Request Parser in Django 3.2 ... | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
 | openSUSE-SU-2023:0075-1 Security update for python-Django | 15% Средний | больше 2 лет назад | |
| openSUSE-SU-2023:0062-1 Security update for python-Django | 15% Средний | почти 3 года назад | |
 | BDU:2023-09100 Уязвимость программной платформы для веб-приложений Django, связанная с неконтролируемым расходом ресурсов, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 15% Средний | почти 3 года назад |
Уязвимостей на страницу