GoogleOSV:GHSA-QG36-9JXH-FJ25Incorrect signature verification in django-ses
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
29.1%
The django_ses library implements a mail backend for Django using AWS Simple Email Service. The library exports the SESEventWebhookView class intended to receive signed requests from AWS to handle email bounces, subscriptions, etc. These requests are signed by AWS and are verified by django_ses, however the verification of this signature was found to be flawed as it allowed users to specify arbitrary public certificates.
| CPE | Name | Operator | Version |
|---|---|---|---|
| django-ses | eq | 0.8.14 | |
| django-ses | eq | 0.1 | |
| django-ses | eq | 2.1.1 | |
| django-ses | eq | 0.7.1 | |
| django-ses | eq | 0.3.0 | |
| django-ses | eq | 0.8.5 | |
| django-ses | eq | 0.4.0 | |
| django-ses | eq | 3.1.2 | |
| django-ses | eq | 2.3.0 | |
| django-ses | eq | 0.8.2 |
References
github.com/django-ses/django-ses
github.com/django-ses/django-ses/blob/3d627067935876487f9938310d5e1fbb249a7778/CVE/001-cert-url-signature-verification.md
github.com/django-ses/django-ses/commit/b71b5f413293a13997b6e6314086cb9c22629795
github.com/django-ses/django-ses/security/advisories/GHSA-qg36-9jxh-fj25
github.com/pypa/advisory-database/tree/main/vulns/django-ses/PYSEC-2023-82.yaml
nvd.nist.gov/vuln/detail/CVE-2023-33185
Related
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N
0.001 Low
EPSS
Percentile
29.1%