Lucene search
K

24 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/02/24 11:37 p.m.21 views

Security Bulletin: Denial of service, SQL injection, and other vulnerabilities might affect IBM Storage Defender – Resiliency Service

Summary IBM Storage Defender – Resiliency Service is vulnerable to denial of service, SQL injection, and others. The vulnerabilities have been addressed. CVE-2023-52425, CVE-2024-53908, CVE-2024-53907, CVE-2023-52426, CVE-2022-29162, CVE-2023-25809, CVE-2023-27561, CVE-2023-28642, CVE-2024-21626,...

9.8CVSS9.2AI score0.18087EPSS
Exploits21Affected Software1
Debian
Debian
added 2024/12/31 4:1 p.m.15 views

[SECURITY] [DLA 4006-1] python-django security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4006-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb December 31, 2024 https://wiki.debian.org/LTS -...

7.5CVSS6.7AI score0.01398EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/12/31 12:0 a.m.6 views

Debian dla-4006 : python-django-doc - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4006 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4006-1 [email protected] https://www.debian.org/lts/security/...

7.5CVSS6.8AI score0.01398EPSS
Exploits0References4
OPENSUSE Linux
OPENSUSE Linux
added 2024/12/12 12:0 a.m.4 views

python310-Django-5.1.4-1.1 on GA media (moderate)

python310-Django-5.1.4-1.1 on GA media Announcement ID: openSUSE-SU-2024:14568-1 Rating: moderate Cross-References: CVE-2024-53907 CVE-2024-53908 CVSS scores: CVE-2024-53907 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-53908 SUSE : 9.1...

9.1CVSS9.3AI score0.01424EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/12/12 12:0 a.m.20 views

openSUSE Security Advisory (SUSE-SU-2024:4285-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.01424EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2024/12/10 12:0 a.m.4 views

python310-Django4-4.2.17-1.1 on GA media (moderate)

python310-Django4-4.2.17-1.1 on GA media Announcement ID: openSUSE-SU-2024:14565-1 Rating: moderate Cross-References: CVE-2024-53907 CVE-2024-53908 CVSS scores: CVE-2024-53907 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-53908 SUSE : 9.1...

9.1CVSS9.3AI score0.01424EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/12/09 12:0 a.m.29 views

Django 4.x < 4.2.17, 5.0.x < 5.0.10, 5.1.x < 5.1.4 Multiple Vulnerabilities - Windows

Django is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if descriptio...

9.8CVSS7.3AI score0.01424EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2024/12/09 12:0 a.m.24 views

Django 4.x < 4.2.17, 5.0.x < 5.0.10, 5.1.x < 5.1.4 Multiple Vulnerabilities - Linux

Django is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:djangoproject:django"; if descriptio...

9.8CVSS7.3AI score0.01424EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2024/12/06 12:30 p.m.5 views

aldryn-django (=4.2.10.0), alertwise (=1.0.0) +93 more potentially affected by CVE-2024-53907 via django (>=4.2.0 <=4.2.16)

django PYPI version =4.2.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =0.4.0, =4.16.2, =4.8.0, =8.0.0, =5.2.0, =5.2.2 - cpu-utilization-monitoring =0.1.3 and more Source cves: CVE-2024-53907 Source advisory: OSV:GHSA-8498-2H75-472J...

7.5CVSS6.8AI score0.01398EPSS
Exploits0
NVD
NVD
added 2024/12/06 12:15 p.m.14 views

CVE-2024-53907

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...

7.5CVSS0.01398EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2024/12/06 12:15 p.m.8 views

artd-customer (>=0.0.20 <=0.0.23), artd-location (>=0.0.13 <=0.0.21) +62 more potentially affected by CVE-2024-53907 via django (>=5.0.0 <=5.0.1)

django PYPI version =5.0.0, =0.0.20, =0.0.13, =0.0.19, =0.0.34, =0.0.50, =0.0.5, =0.0.11, =1.0.3, =1.0.0, =6.0.0, =2.8.1, =0.3.0, =24.1.1, =24.2.0 and more Source cves: CVE-2024-53907 Source advisory: OSV:PYSEC-2024-156...

7.5CVSS6.8AI score0.01398EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/12/06 12:15 p.m.5 views

aldryn-django (=4.2.10.0), alertwise (=1.0.0) +93 more potentially affected by CVE-2024-53907 via django (>=4.2.0 <=4.2.16)

django PYPI version =4.2.0, =65.10.0, =7.5.1, =1.0.2, =0.0.1, =0.4.0, =4.16.2, =4.8.0, =8.0.0, =5.2.0, =5.2.2 - cpu-utilization-monitoring =0.1.3 and more Source cves: CVE-2024-53907 Source advisory: OSV:PYSEC-2024-156...

7.5CVSS6.8AI score0.01398EPSS
Exploits0
Chainguard
Chainguard
added 2024/12/06 12:15 p.m.20 views

CVE-2024-53907 vulnerabilities

Vulnerabilities for packages: awx, py3-django...

7.5CVSS6.8AI score0.01398EPSS
Exploits0
Wolfi
Wolfi
added 2024/12/06 12:15 p.m.80 views

CVE-2024-53907 vulnerabilities

Vulnerabilities for packages: py3-django...

7.5CVSS7.1AI score0.01398EPSS
Exploits0
Circl
Circl
added 2024/12/06 11:48 a.m.31 views

CVE-2024-53907

creationtimestamp| type| source ---|---|--- 2024-12-06 11:48:34+00:00| seen| https://infosec.exchange/users/cve/statuses/113605719732617942 2024-12-06 13:56:45+00:00| seen| https://t.me/cvedetector/12205...

7.5CVSS6.8AI score0.01398EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.17 views

CVE-2024-53907

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...

0.01398EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/12/06 12:0 a.m.11 views

CVE-2024-53907

An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2.17. The striptags method and striptags template filter are subject to a potential denial-of-service attack via certain inputs containing large sequences of nested incomplete HTML entities...

7.5CVSS6.7AI score0.01398EPSS
Exploits0
CVE
CVE
added 2024/12/06 12:0 a.m.328 views

CVE-2024-53907

The CVE concerns Django (versions 5.1 &lt;= 5.1.3, 5.0 &lt;= 5.0.9, and 4.2

7.5CVSS6.7AI score0.01398EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2024/12/05 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-7136-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.5AI score0.01424EPSS
Exploits0References2
OSV
OSV
added 2024/12/04 8:8 p.m.4 views

USN-7136-2 python-django vulnerability

USN-7136-1 fixed a vulnerability in Django. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: jiangniao discovered that Django incorrectly handled the API to strip tags. A remote attacker could possibly use this issue to cause Djan...

7.5CVSS7.3AI score0.01398EPSS
Exploits0References2
Rows per page
Query Builder