Lucene search

GitHub Advisory DatabaseGHSA-PVHP-V9QP-XF5R

HistoryJul 23, 2018 - 7:50 p.m.

Django-piston and Django-tastypie do not properly deserialize YAML data

2018-07-2319:50:48

CWE-20

GitHub Advisory Database

github.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.0%

JSON

emitters.py in Django Piston before 0.2.3 and 0.2.x before 0.2.2.1 does not properly deserialize YAML data, which allows remote attackers to execute arbitrary Python code via vectors related to the yaml.load method.

Django Tastypie has a very similar vulnerability.

CPENameOperatorVersion
django-pistonlt0.2.3
django-pistonle0.2.2.0

CPE	Name	Operator	Version
	django-piston	lt	0.2.3
	django-piston	le	0.2.2.0

References

www.debian.org/security/2011/dsa-2344

www.openwall.com/lists/oss-security/2011/11/01/10

bitbucket.org/jespern/django-piston/commits/91bdaec89543/

bugzilla.redhat.com/show_bug.cgi?id=750658

github.com/advisories/GHSA-pvhp-v9qp-xf5r

nvd.nist.gov/vuln/detail/CVE-2011-4103

www.djangoproject.com/weblog/2011/nov/01/piston-and-tastypie-security-releases/

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.011 Low

EPSS

Percentile

84.0%

JSON

Related for GHSA-PVHP-V9QP-XF5R