Lucene search
+L

24 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2023-41164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via...

7.5CVSS6.5AI score0.01273EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/05/27 12:0 a.m.18 views

Fedora: Security Advisory for python-django3 (FEDORA-2024-84fbbbb914)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.02978EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/04/28 12:0 a.m.31 views

RHEL 8 / 9 : Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update (Moderate) (RHSA-2023:5758)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:5758 advisory. Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT...

7.5CVSS6.9AI score0.01273EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2024/04/20 12:0 a.m.36 views

Fedora 38 : python-django3 (2024-84fbbbb914)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-84fbbbb914 advisory. Security fixes for - CVE-2024-27351 Potential regular expression DOS in django.utils.text.Truncator.words - CVE-2024-24680 denial-of-service in...

7.5CVSS6.8AI score0.02978EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/04/18 12:0 a.m.130 views

RHEL 8 : RHUI 4.8 Release - Security Updates, Bug Fixes, and Enhancements (Moderate) (RHSA-2024:1878)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1878 advisory. Red Hat Update Infrastructure RHUI offers a highly scalable, highly redundant framework that enables you to manage repositories and content...

7.5CVSS6.7AI score0.76875EPSS
Exploits22References35
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.35 views

Fedora 39 : python-django (2023-a67af7d8f4)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-a67af7d8f4 advisory. Security fix for CVE-2023-41164 and CVE-2023-43665 Tenable has extracted the preceding description block directly from the Fedora security advisory...

7.5CVSS6.8AI score0.01273EPSS
Exploits0References3
vulnersOsv
vulnersOsv
added 2023/11/03 6:36 a.m.4 views

aolab-aopy (>=0.6.3 <=0.9.3), aolab-bmi3d (>=1.0.0 <=1.2.4) +20 more potentially affected by CVE-2023-41164 via django (>=4.1.0 <=4.1.10)

django PYPI version =4.1.0, =0.6.3, =1.0.0, =0.0.3, =0.0.1, =0.1.0, =0.2.6, =4.0.0, =2022.6.1, =1.0.0, =4.1.0, =4.1.10 and more Source cves: CVE-2023-41164 Source advisory: OSV:GHSA-7H4P-27MH-HMRW...

7.5CVSS6.6AI score0.01273EPSS
Exploits0
NVD
NVD
added 2023/11/03 5:15 a.m.25 views

CVE-2023-41164

In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via certain inputs with a very large number of Unicode characters...

7.5CVSS7.3AI score0.01273EPSS
Exploits0References7
vulnersOsv
vulnersOsv
added 2023/11/03 5:15 a.m.3 views

aolab-aopy (>=0.6.3 <=0.9.3), aolab-bmi3d (>=1.0.0 <=1.2.4) +20 more potentially affected by CVE-2023-41164 via django (>=4.1.0 <=4.1.10)

django PYPI version =4.1.0, =0.6.3, =1.0.0, =0.0.3, =0.0.1, =0.1.0, =0.2.6, =4.0.0, =2022.6.1, =1.0.0, =4.1.0, =4.1.10 and more Source cves: CVE-2023-41164 Source advisory: OSV:PYSEC-2023-225...

7.5CVSS6.6AI score0.01273EPSS
Exploits0
CVE
CVE
added 2023/11/03 12:0 a.m.282 views

CVE-2023-41164

CVE-2023-41164 affects Django versions where uri_to_iri() is vulnerable to a DoS via inputs with a vast number of Unicode characters. Affected are Django 3.2 before 3.2.21, Django 4.1 before 4.1.11, and Django 4.2 before 4.2.5. The root cause is described as a potential denial-of-service in djang...

7.5CVSS7.2AI score0.01273EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2023/11/03 12:0 a.m.65 views

CVE-2023-41164

In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via certain inputs with a very large number of Unicode characters...

7.5CVSS6.6AI score0.01273EPSS
Exploits0
OSV
OSV
added 2023/11/03 12:0 a.m.21 views

CVE-2023-41164

In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via certain inputs with a very large number of Unicode characters...

7.5CVSS7.1AI score0.01273EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2023/11/03 12:0 a.m.34 views

CVE-2023-41164

In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via certain inputs with a very large number of Unicode characters...

7.5CVSS7.5AI score0.01273EPSS
Exploits0
OpenVAS
OpenVAS
added 2023/10/24 12:0 a.m.27 views

Fedora: Security Advisory for python-django (FEDORA-2023-9d36d373f1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.02978EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/24 12:0 a.m.24 views

Fedora: Security Advisory for python-asgiref (FEDORA-2023-9d36d373f1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.02978EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.34 views

Fedora 37 : python-asgiref / python-django (2023-9d36d373f1)

The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-9d36d373f1 advisory. Security fix for CVE-2023-43665, CVE-2023-41164, and CVE-2023-36053 Tenable has extracted the preceding description block directly from the Fedora...

7.5CVSS6.8AI score0.02978EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/10/05 12:0 a.m.30 views

Ubuntu: Security Advisory (USN-6414-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.01273EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/10/04 10:1 p.m.81 views

USN-6414-2: Django vulnerabilities

USN-6414-1 and USN-6378-1 fixed CVE-2023-43665 and CVE-2023-41164 in Django, respectively. This update provides the corresponding update for Ubuntu 18.04 LTS. Original advisory details: Wenchao Li discovered that the Django Truncator function incorrectly handled very long HTML input. A remote...

7.5CVSS6.8AI score0.01273EPSS
Exploits0
OSV
OSV
added 2023/09/22 11:5 a.m.2 views

OESA-2023-1661 python-django security update

Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Security Fixes: An uncontrolled resource consumption vulnerability was found in Django. Feeding certain inputs with a very large number of Unicode characters to the URI to IRI encoder functi...

7.5CVSS6.7AI score0.01273EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/09/18 6:16 p.m.46 views

Moderate: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update

An update is now available for Red Hat Ansible Automation Platform 2.4 Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.8AI score0.01273EPSS
Exploits0References2
Rows per page
Query Builder