Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-yke3-gpun-ubay

Summary A duplicate SystemPrincipal object could be created when parsing a non-system html document via DOMParser::ParseFromSafeString. This could have lead to bypassing web security checks.

Aliases

alias	CVE-2023-23604

Fixed_packages

Affected_packages

References

reference_url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-01

reference_id

mfsa2023-01

reference_type

scores

value	high
scoring_system	generic_textual
scoring_elements

url

https://www.mozilla.org/en-US/security/advisories/mfsa2023-01

Weaknesses

Exploits

Severity_range_score 7.0 - 8.9

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-yke3-gpun-ubay

Vulnerability Instance