Lucene search
Redhat.comRH:CVE-2023-43665HistoryOct 04, 2023 - 7:54 p.m.
CVE-2023-43665
2023-10-0419:54:23
redhat.com
access.redhat.com
18
django
regex
denial of service
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.3%
An inefficient regular expression complexity was found in Django. The text truncator regular expressions exhibit linear backtracking complexity, which can be slow, leading to a potential denial of service, given certain HTML inputs.
Related
nessus
nessus
FreeBSD : Django -- multiple vulnerabilities (4f254817-6318-11ee-b2ff-080027de9982)
2023-10-05 00:00:00
openSUSE 15 Security Update : python-Django (openSUSE-SU-2023:0310-1)
2023-10-22 00:00:00
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : Django vulnerability (USN-6414-1)
2023-10-04 00:00:00
openvas
openvas
openSUSE: Security Advisory for python (openSUSE-SU-2023:0310-1)
2024-03-04 00:00:00
Ubuntu: Security Advisory (USN-6414-1)
2023-10-05 00:00:00
openSUSE: Security Advisory for python (openSUSE-SU-2023:0390-1)
2024-03-04 00:00:00
freebsd
freebsd
Django -- multiple vulnerabilities
2023-10-01 00:00:00
osv
osv
python-django vulnerability
2023-10-04 16:25:59
Django Denial-of-service in django.utils.text.Truncator
2023-11-03 06:36:30
PYSEC-2023-226
2023-11-03 05:15:00
redos
redos
ROS-20231030-02
2023-10-30 00:00:00
veracode
veracode
Regular Expression Denial Of Service (ReDoS)
2023-10-30 06:23:22
ubuntu
ubuntu
Django vulnerability
2023-10-04 00:00:00
Django vulnerabilities
2023-10-04 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: python-django-4.2.6-1.fc39
2023-11-03 18:57:22
[SECURITY] Fedora 37 Update: python-asgiref-3.5.2-1.fc37
2023-10-23 01:25:12
[SECURITY] Fedora 38 Update: python-asgiref-3.5.2-1.fc38
2023-10-15 01:44:29
nvd
nvd
CVE-2023-43665
2023-11-03 05:15:30
CVE-2024-27351
2024-03-15 20:15:09
cvelist
cvelist
CVE-2023-43665
2023-11-03 00:00:00
CVE-2024-27351
2024-03-15 00:00:00
prion
prion
Hardcoded credentials
2023-11-03 05:15:00
ubuntucve
ubuntucve
CVE-2023-43665
2023-10-04 00:00:00
CVE-2024-27351
2024-03-04 00:00:00
cve
cve
CVE-2023-43665
2023-11-03 05:15:30
CVE-2024-27351
2024-03-15 20:15:09
redhat
redhat
(RHSA-2023:6158) Moderate: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
2023-10-30 01:15:30
(RHSA-2023:5758) Moderate: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
2023-10-16 15:29:02
(RHSA-2024:1536) Moderate: Satellite 6.14.3 Async Security Update
2024-03-27 13:14:03
github
github
Django Denial-of-service in django.utils.text.Truncator
2023-11-03 06:36:30
Regular expression denial-of-service in Django
2024-03-15 21:30:43
alpinelinux
alpinelinux
CVE-2023-43665
2023-11-03 05:15:30
CVE-2024-27351
2024-03-15 20:15:09
debiancve
debiancve
CVE-2023-43665
2023-11-03 05:15:30
CVE-2024-27351
2024-03-15 20:15:09
hackerone
hackerone
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
47.3%
Related for RH:CVE-2023-43665