Lucene search

K

Veracode Vulnerability DatabaseVERACODE:48415

HistoryAug 08, 2024 - 7:53 a.m.

SQL Injection

2024-08-0807:53:38

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4

django

sql injection

queryset

jsonfield

security vulnerability

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

30.6%

Django is vulnerable to SQL injection. The vulnerability is due to the QuerySet.values and values_list functions on models with a JSONField, allowing attackers to manipulate SQL queries in column aliases via a crafted JSON object key passed as an argument.

References

docs.djangoproject.com/en/dev/releases/security

docs.djangoproject.com/en/dev/releases/security/

github.com/advisories/GHSA-pv4p-cwwg-4rph

github.com/django/django/commit/32ebcbf2e1fe3e5ba79a6554a167efce81f7422d

github.com/django/django/commit/f4af67b9b41e0f4c117a8741da3abbd1c869ab28

github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2024-70.yaml

groups.google.com/forum/#%21forum/django-announce

www.djangoproject.com/weblog/2024/aug/06/security-releases

www.djangoproject.com/weblog/2024/aug/06/security-releases/

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.001

Percentile

30.6%

Related for VERACODE:48415

osv6 github1 ubuntucve1 cvelist1 hackerone1 debiancve1 cve1 vulnrichment1 nvd1 redhatcve1 openvas3 nessus5 ubuntu1 freebsd1 redhat1