Lucene search
K

25 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-23833

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could...

7.5CVSS6.8AI score0.49246EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/11/14 12:0 a.m.18 views

Fedora 36 : python-django (2022-4094ccf096)

The remote Fedora 36 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-4094ccf096 advisory. Automatic update for python-django-4.0.2-1.fc36. Changelog Wed Feb 2 2022 Matthias Runge - 4.0.2-1 - rebase to 4.0.2, fix for CVE-2022-22818...

7.5CVSS6.7AI score0.49246EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2023/01/23 12:0 a.m.38 views

RHEL 8 : Red Hat OpenStack Platform 16.2.4 (python-django20) (RHSA-2022:8853)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2022:8853 advisory. Security Fixes: Possible XSS via '% debug %' template tag CVE-2022-22818 Denial of service possibility in file uploads CVE-2022-23833 For mo...

7.5CVSS7.1AI score0.49246EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2022/12/07 8:29 p.m.49 views

Important: Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (python-django20) security update

An update for python-django20 is now available for Red Hat OpenStack Platform 16.1.9 Train for Red Hat Enterprise Linux RHEL 8.2. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

9.8CVSS6.7AI score0.49246EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2022/11/18 12:0 a.m.21 views

Debian: Security Advisory (DLA-3191-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.6AI score0.49246EPSS
Exploits1References3
Debian
Debian
added 2022/11/17 10:0 p.m.41 views

[SECURITY] [DLA 3191-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3191-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb November 17, 2022 https://wiki.debian.org/LTS -...

7.5CVSS7.3AI score0.49246EPSS
Exploits1
Debian
Debian
added 2022/10/15 4:0 p.m.53 views

[SECURITY] [DSA 5254-1] python-django security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5254-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 15, 2022 https://www.debian.org/security/faq -...

9.8CVSS9.3AI score0.73274EPSS
Exploits7
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.26 views

Ubuntu: Security Advisory (USN-5269-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7AI score0.49246EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2022/07/05 2:41 p.m.578 views

Moderate: Red Hat Security Advisory: Satellite 6.11 Release

An update is now available for Red Hat Satellite 6.11 Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: libsolv: Heap-based buff...

9.8CVSS7.6AI score0.49246EPSS
Exploits14References476
ALT Linux
ALT Linux
added 2022/02/25 12:0 a.m.39 views

Security fix for the ALT Linux 10 package python3-module-django version 3.2.12-alt1

3.2.12-alt1 built Feb. 25, 2022 Anton Farygin in task 295709 Feb. 20, 2022 Anton Farygin - 3.2.11 - 3.2.12 - Fixes for the following security vulnerabilities: + CVE-2022-22818: Possible XSS via % debug % template tag. + CVE-2022-23833: Denial-of-service possibility in file uploads...

5CVSS6.9AI score0.49246EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/02/11 12:0 a.m.33 views

Fedora: Security Advisory for python-django (FEDORA-2022-e7fd530688)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.5CVSS6.9AI score0.49246EPSS
Exploits1References2
OSV
OSV
added 2022/02/07 12:41 p.m.8 views

USN-5269-2 python-django vulnerabilities

USN-5269-1 fixed several vulnerabilities in Django. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Keryn Knight discovered that Django incorrectly handled certain template tags. A remote attacker could possibly use this issue to...

7.5CVSS6.8AI score0.49246EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.41 views

Ubuntu 16.04 ESM : Django vulnerabilities (USN-5269-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5269-2 advisory. USN-5269-1 fixed several vulnerabilities in Django. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has...

7.5CVSS7.1AI score0.49246EPSS
Exploits1References3
vulnersOsv
vulnersOsv
added 2022/02/04 12:0 a.m.3 views

admin-tool-button (>=1.0.1a0 <=1.0.5a0), apis-ampel (=0.1.0) +57 more potentially affected by CVE-2022-23833 via django (>=3.2.0 <=3.2.11)

django PYPI version =3.2.0, =1.0.1a0, =0.2.0, =22.0.0.dev21, =22.0.0.dev13, =22.0.0.dev29, =0.0.1, =0.0.14 - django-blocklist =1.0.0 - django-brazilian-zipcode =0.1.0 - django-cachalot =2.4.0 and more Source cves: CVE-2022-23833 Source advisory: OSV:GHSA-6CW3-G6WV-C2XV...

7.5CVSS7AI score0.49246EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/02/04 12:0 a.m.4 views

aimmo (>=0.61.9 <=1.4.6b776), ambition-edc (>=0.3.68 <=0.3.72) +72 more potentially affected by CVE-2022-23833 via django (>=2.2.0 <=2.2.26)

django PYPI version =2.2.0, =0.61.9, =0.3.68, =0.14.0, =5.2.1, =0.1.0, =4.15.0, =4.15.0, =1.0.1, =1.0.0, =0.0.1, =0.0.1, =2.0.0, =2.2.0 - django-country-filter =0.0.1 and more Source cves: CVE-2022-23833 Source advisory: OSV:GHSA-6CW3-G6WV-C2XV...

7.5CVSS7AI score0.49246EPSS
Exploits0
Ubuntu
Ubuntu
added 2022/02/03 11:54 a.m.96 views

USN-5269-1: Django vulnerabilities

Keryn Knight discovered that Django incorrectly handled certain template tags. A remote attacker could possibly use this issue to perform a cross-site scripting attack. CVE-2022-22818 Alan Ryan discovered that Django incorrectly handled file uploads. A remote attacker could possibly use this issu...

7.5CVSS6.9AI score0.49246EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2022/02/03 2:15 a.m.3 views

aa-charlink (>=0.1.1 <=1.0.0), aa-drifters (=0.1.0a0) +212 more potentially affected by CVE-2022-23833 via django (>=4.0.0 <=4.0.10)

django PYPI version =4.0.0, =0.1.1, =1.0.0, =0.1.0a0, =0.11.0a0, =0.1.1, =1.1.0, =3.1.1, =3.6.4, =0.10.0, =1.1.2, =0.2.0, =0.6.1, =0.6.10 - auth-satvadev =1.0.2 and more Source cves: CVE-2022-23833 Source advisory: OSV:PYSEC-2022-20...

7.5CVSS6.8AI score0.49246EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2022/02/03 2:15 a.m.5 views

CVE-2022-23833

An issue was discovered in MultiPartParser in Django 2.2 before 2.2.27, 3.2 before 3.2.12, and 4.0 before 4.0.2. Passing certain inputs to multipart forms could result in an infinite loop when parsing files...

7.5CVSS7.1AI score0.49246EPSS
Exploits0References12
vulnersOsv
vulnersOsv
added 2022/02/03 2:15 a.m.4 views

aimmo (>=0.61.9 <=1.4.6b776), ambition-edc (>=0.3.68 <=0.3.72) +72 more potentially affected by CVE-2022-23833 via django (>=2.2.0 <=2.2.26)

django PYPI version =2.2.0, =0.61.9, =0.3.68, =0.14.0, =5.2.1, =0.1.0, =4.15.0, =4.15.0, =1.0.1, =1.0.0, =0.0.1, =0.0.1, =2.0.0, =2.2.0 - django-country-filter =0.0.1 and more Source cves: CVE-2022-23833 Source advisory: OSV:PYSEC-2022-20...

7.5CVSS7AI score0.49246EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/02/03 12:0 a.m.55 views

Ubuntu 18.04 LTS / 20.04 LTS : Django vulnerabilities (USN-5269-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5269-1 advisory. Keryn Knight discovered that Django incorrectly handled certain template tags. A remote attacker could possibly use this issue to perform a...

7.5CVSS6.8AI score0.49246EPSS
Exploits1References3
Rows per page
Query Builder