CVE-2018-7537

🗓️ 09 Mar 2018 20:00:00Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 530 Views

Issue in Django 2.0, 1.11, and 1.8 allows catastrophic backtrackin

Reporter	Title	Published	Views	Family All 125
ALT Linux	Security fix for the ALT Linux 9 package python3-module-django version 2.2.3-alt1	15 Jul 201900:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package python3-module-django version 2.2.3-alt1	15 Jul 201900:00	–	altlinux
AlpineLinux	CVE-2018-7537	9 Mar 201820:00	–	alpinelinux
ArchLinux	[ASA-201803-5] python-django: denial of service	6 Mar 201800:00	–	archlinux
ArchLinux	[ASA-201803-6] python2-django: denial of service	6 Mar 201800:00	–	archlinux
CNVD	Django Denial of Service Vulnerability (CNVD-2018-06064)	14 Mar 201800:00	–	cnvd
Cvelist	CVE-2018-7537	9 Mar 201820:00	–	cvelist
Debian	[SECURITY] [DLA 1303-1] python-django security update	8 Mar 201807:55	–	debian
Debian	[SECURITY] [DLA 2233-1] python-django security update	4 Jun 202015:36	–	debian
Debian	[SECURITY] [DSA 4161-1] python-django security update	1 Apr 201813:16	–	debian

NVD

Node

canonical ubuntu_linuxMatch14.04lts

OR

canonical ubuntu_linuxMatch16.04lts

OR

canonical ubuntu_linuxMatch17.10

Node

djangoproject djangoRange1.8–1.8.19

OR

djangoproject djangoRange1.11–1.11.11

OR

djangoproject djangoRange2.0–2.0.3

Node

debian debian_linuxMatch7.0

OR

debian debian_linuxMatch8.0

OR

debian debian_linuxMatch9.0

Source	Link
access	www.access.redhat.com/errata/RHSA-2019:0265
lists	www.lists.debian.org/debian-lts-announce/2018/03/msg00006.html
securityfocus	www.securityfocus.com/bid/103357
djangoproject	www.djangoproject.com/weblog/2018/mar/06/security-releases/
access	www.access.redhat.com/errata/RHSA-2018:2927
usn	www.usn.ubuntu.com/3591-1/
debian	www.debian.org/security/2018/dsa-4161

21 Nov 2024 04:12Current

5.3Medium risk

Vulners AI Score5.3

CVSS 25

CVSS 35.3

EPSS0.03173

django cve-2018-7537 security vulnerability html regular expression truncatechars_html truncatewords_html nvd