2 matches found
CVE-2026-5766
CVE-2026-5766 affects Django 6.0 before 6.0.5 and 5.2 before 5.2.14. An ASGI request with a missing or understated Content-Length can bypass FILE_UPLOAD_MAX_MEMORY_SIZE, potentially loading large files into memory and degrading service. The issue is mitigated by applying the patched releases (6.0...
March 10, 2026—KB5078885 (OS Builds 19045.7058 and 19044.7058)
None None...