EPSS
Percentile
61.3%
A flaw was found in django. The intermediate-level directories of the file system cache had the system’s standard umask rather than 0o077 (no group or others permissions). The highest threat from this vulnerability is to data confidentiality.
0o077
bugzilla.redhat.com/show_bug.cgi?id=1874492
nvd.nist.gov/vuln/detail/CVE-2020-24584
www.cve.org/CVERecord?id=CVE-2020-24584
www.djangoproject.com/weblog/2020/sep/01/security-releases