Lucene search
FreeBSD3B47104F-1461-11ED-A0C5-080027240888HistoryAug 01, 2022 - 12:00 a.m.
Django -- multiple vulnerabilities
2022-08-0100:00:00
vuxml.freebsd.org
11
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
74.4%
Django reports:
CVE-2022-36359: Potential reflected file download vulnerability in FileResponse.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| FreeBSD | any | noarch | py38-django32 | < 3.2.15 | UNKNOWN |
| FreeBSD | any | noarch | py39-django32 | < 3.2.15 | UNKNOWN |
| FreeBSD | any | noarch | py310-django32 | < 3.2.15 | UNKNOWN |
| FreeBSD | any | noarch | py38-django40 | < 4.0.7 | UNKNOWN |
| FreeBSD | any | noarch | py39-django40 | < 4.0.7 | UNKNOWN |
| FreeBSD | any | noarch | py310-django40 | < 4.0.7 | UNKNOWN |
Related
debiancve
debiancve
CVE-2022-36359
2022-08-03 14:15:08
ubuntucve
ubuntucve
CVE-2022-36359
2022-08-03 00:00:00
suse
suse
Security update for python-Django (important)
2022-08-27 00:00:00
openvas
openvas
openSUSE: Security Advisory for python (openSUSE-SU-2022:10103-1)
2024-03-04 00:00:00
Django < 3.2.15, 4.x < 4.0.7 Information Disclosure Vulnerability - Linux
2022-07-05 00:00:00
Django < 3.2.15, 4.x < 4.0.7 Information Disclosure Vulnerability - Windows
2022-07-05 00:00:00
github
github
Django vulnerable to Reflected File Download attack
2022-08-11 14:49:12
django-sendfile2 before 0.7.0 contains reflected file download vulnerability
2022-08-11 18:12:35
ubuntu
ubuntu
Django vulnerability
2022-08-04 00:00:00
nessus
nessus
FreeBSD : Django -- multiple vulnerabilities (3b47104f-1461-11ed-a0c5-080027240888)
2022-08-05 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS : Django vulnerability (USN-5549-1)
2022-08-05 00:00:00
openSUSE 15 Security Update : python-Django (openSUSE-SU-2022:10103-1)
2022-08-28 00:00:00
nvd
nvd
CVE-2022-36359
2022-08-03 14:15:08
prion
prion
Input validation
2022-08-03 14:15:00
cvelist
cvelist
CVE-2022-36359
2022-08-03 00:00:00
cve
cve
CVE-2022-36359
2022-08-03 14:15:08
veracode
veracode
Information Disclosure
2022-08-04 06:24:41
osv
osv
django-sendfile2 before 0.7.0 contains reflected file download vulnerability
2022-08-11 18:12:35
python-django vulnerability
2022-08-04 15:56:54
Django vulnerable to Reflected File Download attack
2022-08-11 14:49:12
alpinelinux
alpinelinux
CVE-2022-36359
2022-08-03 14:15:08
mageia
mageia
Updated python-django packages fix security vulnerability
2022-08-13 05:32:35
altlinux
altlinux
debian
debian
[SECURITY] [DSA 5254-1] python-django security update
2022-10-15 16:00:48
fedora
fedora
[SECURITY] Fedora 38 Update: python-django-4.0.10-1.fc38
2023-04-28 02:37:47
[SECURITY] Fedora 37 Update: python-django-4.0.10-1.fc37
2023-04-28 02:04:16
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.004 Low
EPSS
Percentile
74.4%
Related for 3B47104F-1461-11ED-A0C5-080027240888