Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-fe6z-ek8w-qqae
Summary
Buffer under-read in workerd
Prior to version v1.20230419.0, the FormData API implementation was subject to an integer overflow. If a FormData instance contained more than 2^31 elements, the forEach() method could end up reading from the wrong location in memory while iterating over elements. This would most likely lead to a segmentation fault, but could theoretically allow arbitrary undefined behavior.


In order for the bug to be exploitable, the process would need to be able to allocate 160GB of RAM. Due to this, the bug was never exploitable on the Cloudflare Workers platform, but could theoretically be exploitable on deployments of workerd running on machines with a huge amount of memory. Moreover, in order to be remotely exploited, an attacker would have to upload a single form-encoded HTTP request of at least tens of gigabytes in size. The application code would then have to use request.formData() to parse the request and formData.forEach() to iterate over this data. Due to these limitations, the exploitation likelihood was considered Low.

A fix that addresses this vulnerability has been released in version v1.20230419.0 and users are encouraged to update to the latest version available.
Aliases
0
alias CVE-2023-2512
1
alias GHSA-8vx6-69vg-c46f
Fixed_packages
0
url pkg:npm/workerd@1.20230419.0
purl pkg:npm/workerd@1.20230419.0
is_vulnerable false
affected_by_vulnerabilities
resource_url http://public2.vulnerablecode.io/packages/pkg:npm/workerd@1.20230419.0
Affected_packages
References
0
reference_url https://github.com/cloudflare/workerd/releases/tag/v1.20230419.0
reference_id
reference_type
scores
url https://github.com/cloudflare/workerd/releases/tag/v1.20230419.0
1
reference_url https://nvd.nist.gov/vuln/detail/CVE-2023-2512
reference_id CVE-2023-2512
reference_type
scores
url https://nvd.nist.gov/vuln/detail/CVE-2023-2512
2
reference_url https://github.com/advisories/GHSA-8vx6-69vg-c46f
reference_id GHSA-8vx6-69vg-c46f
reference_type
scores
url https://github.com/advisories/GHSA-8vx6-69vg-c46f
3
reference_url https://github.com/cloudflare/workerd/security/advisories/GHSA-8vx6-69vg-c46f
reference_id GHSA-8vx6-69vg-c46f
reference_type
scores
url https://github.com/cloudflare/workerd/security/advisories/GHSA-8vx6-69vg-c46f
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 190
name Integer Overflow or Wraparound
description The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.
2
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
Severity_range_scorenull
Exploitabilitynull
Weighted_severitynull
Risk_scorenull
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-fe6z-ek8w-qqae