33 matches found
Security Bulletin: IBM Maximo Application Suite - Monitor Component is vulnerable to Django-4.2.20-py3-none-any.whl CVE-2025-48432
Summary IBM Maximo Application Suite - Monitor Component is vulnerable to Django-4.2.20-py3-none-any.whl CVE-2025-48432. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2025-48432 DESCRIPTION: An issue was discovered in Django 5.2 before...
Important: Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update
An update is now available for Red Hat Ansible Automation Platform 2.5 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
Django 4.x < 4.2.24, 5.0.x < 5.1.12, 5.2.x < 5.2.6 SQLi Vulnerability - Linux
Django is prone to an SQL injection SQLi vulnerability in FilteredRelation column aliases. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...
Security update for python-Django (moderate)
openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2025:0240-1 Rating: moderate References: 1244095 Cross-References: CVE-2025-48432 CVSS scores: CVE-2025-48432 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:H/SA:N Affected Products:...
Security update for python-Django (moderate)
openSUSE Security Update: Security update for python-Django Announcement ID: openSUSE-SU-2025:0198-1 Rating: moderate References: 1244095 Cross-References: CVE-2025-48432 CVSS scores: CVE-2025-48432 SUSE: 6.9 CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:H/SA:N Affected Products:...
openSUSE Security Advisory (SUSE-SU-2025:02248-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES15 / openSUSE 15 Security Update : python-Django (SUSE-SU-2025:02248-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:02248-1 advisory. - CVE-2025-48432: Add an additional hardening for CVE-2025-48432 bsc1244095 Tenable has extracted the preceding description block directl...
SUSE-SU-2025:02248-1 Security update for python-Django
This update for python-Django fixes the following issues: - CVE-2025-48432: Add an additional hardening for CVE-2025-48432 bsc1244095...
python311-Django4-4.2.22-1.1 on GA media (moderate)
python311-Django4-4.2.22-1.1 on GA media Announcement ID: openSUSE-SU-2025:15268-1 Rating: moderate Cross-References: CVE-2025-48432 CVSS scores: CVE-2025-48432 SUSE : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N CVE-2025-48432 SUSE : 6.9...
python311-Django-5.2.2-1.1 on GA media (moderate)
python311-Django-5.2.2-1.1 on GA media Announcement ID: openSUSE-SU-2025:15267-1 Rating: moderate Cross-References: CVE-2025-48432 CVSS scores: CVE-2025-48432 SUSE : 6.8 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N CVE-2025-48432 SUSE : 6.9...
SUSE SLES15 / openSUSE 15 Security Update : python-Django (SUSE-SU-2025:01952-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2025:01952-1 advisory. - CVE-2025-48432: log injection or forgery due to unescaped control characters being added into logs bsc1244095. Tenable has extracted th...
MGASA-2025-0193 Updated python-django packages fix security vulnerability
Potential log injection via unescaped request path. CVE-2025-48432...
Updated python-django packages fix security vulnerability
Potential log injection via unescaped request path. CVE-2025-48432...
Fedora: Security Advisory (FEDORA-2025-6de2ab1d25)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2025-ad58eb378b)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : python-django5 (2025-2dff80a8a3)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-2dff80a8a3 advisory. - Fixes CVE-2025-32873: Denial-of-service possibility in striptags - Fixes CVE-2025-48432: Potential log injection via unescaped request path Tenabl...
Fedora 42 : python-django5 (2025-ad58eb378b)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-ad58eb378b advisory. - Fixes CVE-2025-32873: Denial-of-service possibility in striptags - Fixes CVE-2025-48432: Potential log injection via unescaped request path Tenabl...
Fedora 42 : python-django4.2 (2025-6de2ab1d25)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-6de2ab1d25 advisory. - Fixes CVE-2025-32873: Denial-of-service possibility in striptags - Fixes CVE-2025-48432: Potential log injection via unescaped request path Tenabl...
Fedora: Security Advisory (FEDORA-2025-d4849e6cf3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 41 : python-django4.2 (2025-d4849e6cf3)
The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-d4849e6cf3 advisory. - Fixes CVE-2025-32873: Denial-of-service possibility in striptags - Fixes CVE-2025-48432: Potential log injection via unescaped request path Tenabl...