Lucene search
Veracode Vulnerability DatabaseVERACODE:30381HistoryMay 07, 2021 - 9:46 a.m.
HTTP Response Header Injection
2021-05-0709:46:17
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
0.002 Low
EPSS
Percentile
53.6%
django is vulnerable to HTTP response header injection. The vulnerability exists when the library does not prevent the use of malicious characters such as newlines and tabs in URL when it is used with Python 3.9.5+.
References
www.openwall.com/lists/oss-security/2021/05/06/1
django.readthedocs.io/en/latest/releases/security.html#may-6-2021-cve-2021-32052
docs.djangoproject.com/en/3.2/releases/security/
groups.google.com/forum/#!forum/django-announce
lists.fedoraproject.org/archives/list/[email protected]/message/ZVKYPHR3TKR2ESWXBPOJEKRO2OSJRZUE/
security.netapp.com/advisory/ntap-20210611-0002/
www.djangoproject.com/weblog/2021/may/06/security-releases
www.djangoproject.com/weblog/2021/may/06/security-releases/
Related
redhatcve
redhatcve
CVE-2021-32052
2021-05-06 18:36:40
debiancve
debiancve
CVE-2021-32052
2021-05-06 16:15:07
github
github
Header injection possible in Django
2021-06-09 17:14:51
osv
osv
BIT-django-2021-32052
2024-03-06 10:55:03
PYSEC-2021-8
2021-05-06 16:15:00
CVE-2021-32052
2021-05-06 16:15:07
ubuntucve
ubuntucve
CVE-2021-32052
2021-05-06 00:00:00
prion
prion
Design/Logic Flaw
2021-05-06 16:15:00
openvas
openvas
Django 2.2 < 2.2.22, 3.1 < 3.1.10, 3.2 < 3.2.2 Header Injection Vulnerability - Linux
2021-05-07 00:00:00
Django 2.2 < 2.2.22, 3.1 < 3.1.10, 3.2 < 3.2.2 Header Injection Vulnerability - Windows
2021-05-07 00:00:00
Ubuntu: Security Advisory (USN-5373-2)
2022-08-26 00:00:00
cvelist
cvelist
CVE-2021-32052
2021-05-06 15:49:20
nvd
nvd
CVE-2021-32052
2021-05-06 16:15:07
cve
cve
CVE-2021-32052
2021-05-06 16:15:07
nessus
nessus
Ubuntu 16.04 ESM : Django vulnerabilities (USN-5373-2)
2022-04-11 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Django vulnerabilities (USN-4975-1)
2021-06-02 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : Django vulnerabilities (USN-5373-1)
2022-04-11 00:00:00
ubuntu
ubuntu
Django vulnerabilities
2022-04-11 00:00:00
Django vulnerabilities
2022-04-11 00:00:00
Django vulnerabilities
2021-06-02 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: python-django-3.1.9-1.fc34
2021-05-12 05:45:05
altlinux
altlinux
mageia
mageia
Updated python-django package fixes security vulnerabilities
2021-07-16 11:25:31
