Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2024-38875HistoryJul 10, 2024 - 5:15 a.m.
CVE-2024-38875
2024-07-1005:15:12
Debian Security Bug Tracker
security-tracker.debian.org
9
django vulnerability
unix system
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.5
Confidence
Low
An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urlizetrunc were subject to a potential denial of service attack via certain inputs with a very large number of brackets.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | python-django | <= 3:3.2.19-1+deb12u1 | python-django_3:3.2.19-1+deb12u1_all.deb |
| Debian | 11 | all | python-django | <= 2:2.2.28-1~deb11u2 | python-django_2:2.2.28-1~deb11u2_all.deb |
| Debian | 999 | all | python-django | < 3:4.2.14-1 | python-django_3:4.2.14-1_all.deb |
| Debian | 13 | all | python-django | < 3:4.2.14-1 | python-django_3:4.2.14-1_all.deb |
Related
hackerone
hackerone
cve
cve
CVE-2024-38875
2024-07-10 05:15:12
osv
osv
PYSEC-2024-56
2024-07-10 05:15:00
Django vulnerable to Denial of Service
2024-07-10 06:33:52
CVE-2024-38875
2024-07-09 14:00:00
ubuntucve
ubuntucve
CVE-2024-38875
2024-07-09 00:00:00
github
github
Django vulnerable to Denial of Service
2024-07-10 06:33:52
vulnrichment
vulnrichment
CVE-2024-38875
2024-07-10 00:00:00
cvelist
cvelist
CVE-2024-38875
2024-07-10 00:00:00
nvd
nvd
CVE-2024-38875
2024-07-10 05:15:12
wolfi
wolfi
CVE-2024-38875 vulnerabilities
2024-09-18 21:11:55
veracode
veracode
Denial Of Service (DoS)
2024-07-11 05:11:20
redhatcve
redhatcve
CVE-2024-38875
2024-07-26 06:30:14
freebsd
freebsd
Django -- multiple vulnerabilities
2024-07-01 00:00:00
nessus
nessus
Fedora 39 : python-django4.2 (2024-a7eef0ca7b)
2024-07-25 00:00:00
Fedora 40 : python-django4.2 (2024-d05d37ead7)
2024-07-25 00:00:00
Fedora 39 : python-django (2024-82547e3e16)
2024-07-25 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-6888-1)
2024-07-10 00:00:00
Django 4.x < 4.2.14, 5.x < 5.0.7 Multiple Vulnerabilities - Linux
2024-07-12 00:00:00
Ubuntu: Security Advisory (USN-6888-2)
2024-07-12 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2024-07-09 00:00:00
Django vulnerabilities
2024-07-11 00:00:00
fedora
fedora
[SECURITY] Fedora 40 Update: python-django-4.2.14-2.fc40
2024-07-19 01:46:40
[SECURITY] Fedora 40 Update: python-django4.2-4.2.14-1.fc40
2024-07-19 01:46:41
[SECURITY] Fedora 39 Update: python-django4.2-4.2.14-1.fc39
2024-07-19 02:22:03
ibm
ibm
redhat
redhat
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
6.5
Confidence
Low
Related for DEBIANCVE:CVE-2024-38875