Lucene search
K

7 matches found

OSV
OSV
added 2024/03/06 10:51 a.m.42 views

BIT-DJANGO-2023-41164

In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri is subject to a potential DoS denial of service attack via certain inputs with a very large number of Unicode characters...

7.5CVSS7.4AI score0.01284EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2023/10/16 1:5 a.m.6 views

python-django: Potential denial of service vulnerability in ``django.utils.encoding.uri_to_iri()``

An uncontrolled resource consumption vulnerability was found in Django. Feeding certain inputs with a very large number of Unicode characters to the URI to IRI encoder function can lead to a denial of service...

7.5CVSS7.1AI score0.01284EPSS
Exploits0References5
FreeBSD
FreeBSD
added 2023/09/01 12:0 a.m.30 views

Django -- multiple vulnerabilities

Django reports: CVE-2023-41164: Potential denial of service vulnerability in django.utils.encoding.uritoiri...

7.5CVSS6.6AI score0.01284EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.48 views

FreeBSD : Django -- multiple vulnerabilities (6e65dfea-b614-11e9-a3a2-1506e15611cc)

Django release notes : CVE-2019-14232: Denial-of-service possibility in django.utils.text.Truncator If django.utils.text.Truncator's chars and words methods were passed the html=True argument, they were extremely slow to evaluate certain inputs due to a catastrophic backtracking vulnerability in ...

9.8CVSS7.4AI score0.47694EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2019/08/06 1:43 a.m.32 views

Uncontrolled Recursion in Django

An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. If passed certain inputs, django.utils.encoding.uritoiri could lead to significant memory usage due to a recursion when repercent-encoding invalid UTF-8 octet sequences...

7.5CVSS3.1AI score0.03073EPSS
Exploits0References13Affected Software1
OSV
OSV
added 2019/08/02 3:15 p.m.4 views

ALPINE-CVE-2019-14235

An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. If passed certain inputs, django.utils.encoding.uritoiri could lead to significant memory usage due to a recursion when repercent-encoding invalid UTF-8 octet sequences...

7.5CVSS6.9AI score0.03073EPSS
Exploits0References1
OSV
OSV
added 2019/08/02 3:15 p.m.28 views

CVE-2019-14235

An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. If passed certain inputs, django.utils.encoding.uritoiri could lead to significant memory usage due to a recursion when repercent-encoding invalid UTF-8 octet sequences...

7.5CVSS7.3AI score
Exploits0References10
Rows per page
Query Builder