Package Instance

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/628b33a854a9c68ec8a0c51f382f304a0044ec92

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/628b33a854a9c68ec8a0c51f382f304a0044ec92

reference_url

https://github.com/django/django/commit/83f1ea83e4553e211c1c5a0dfc197b66d4e50432

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/83f1ea83e4553e211c1c5a0dfc197b66d4e50432

reference_url

https://github.com/django/django/commit/a665ed5179f5bbd3db95ce67286d0192eff041d8

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/a665ed5179f5bbd3db95ce67286d0192eff041d8

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-13.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-13.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-24580

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-24580

reference_url

https://security.netapp.com/advisory/ntap-20230316-0006

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20230316-0006

reference_url

https://www.djangoproject.com/weblog/2023/feb/14/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/feb/14/security-releases

reference_url

http://www.openwall.com/lists/oss-security/2023/02/14/1

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

http://www.openwall.com/lists/oss-security/2023/02/14/1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031290
reference_id	1031290
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1031290

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2169402
reference_id	2169402
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2169402

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B/

reference_id

FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B/

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_id

HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_id

LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_url

https://lists.debian.org/debian-lts-announce/2023/02/msg00023.html

reference_id

msg00023.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.debian.org/debian-lts-announce/2023/02/msg00023.html

reference_url

https://security.netapp.com/advisory/ntap-20230316-0006/

reference_id

ntap-20230316-0006

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://security.netapp.com/advisory/ntap-20230316-0006/

reference_url	https://access.redhat.com/errata/RHSA-2023:2097
reference_id	RHSA-2023:2097
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2097

reference_url	https://access.redhat.com/errata/RHSA-2023:2101
reference_id	RHSA-2023:2101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2101

reference_url	https://access.redhat.com/errata/RHSA-2023:4692
reference_id	RHSA-2023:4692
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4692

reference_url

https://docs.djangoproject.com/en/4.1/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://docs.djangoproject.com/en/4.1/releases/security/

reference_url

https://www.djangoproject.com/weblog/2023/feb/14/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://www.djangoproject.com/weblog/2023/feb/14/security-releases/

reference_url	https://usn.ubuntu.com/5868-1/
reference_id	USN-5868-1
reference_type
scores
url	https://usn.ubuntu.com/5868-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77/

reference_id

VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP/

reference_id

YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-18T19:24:08Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP/

fixed_packages

url pkg:pypi/django@3.2.18

purl pkg:pypi/django@3.2.18

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.18

url pkg:pypi/django@4.0.10

purl pkg:pypi/django@4.0.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.10

url pkg:pypi/django@4.1.7

purl pkg:pypi/django@4.1.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.7

aliases BIT-django-2023-24580, CVE-2023-24580, GHSA-2hrw-hx67-34x6, PYSEC-2023-13

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-19se-3ng9-c7bw

url VCID-6tdg-t4nv-sbha

vulnerability_id VCID-6tdg-t4nv-sbha

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36053.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-36053.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-36053

reference_id

reference_type

scores

value	0.09595
scoring_system	epss
scoring_elements	0.93073
published_at	2026-06-12T12:55:00Z

value	0.09595
scoring_system	epss
scoring_elements	0.93049
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-36053

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36053
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-36053

reference_url

https://docs.djangoproject.com/en/4.2/releases/security

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.2/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-jh3w-4vvf-mjgr

reference_id

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-jh3w-4vvf-mjgr

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/454f2fb93437f98917283336201b4048293f7582

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/454f2fb93437f98917283336201b4048293f7582

reference_url

https://github.com/django/django/commit/ad0410ec4f458aa39803e5f6b9a3736527062dcd

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/ad0410ec4f458aa39803e5f6b9a3736527062dcd

reference_url

https://github.com/django/django/commit/b7c5feb35a31799de6e582ad6a5a91a9de74e0f9

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/b7c5feb35a31799de6e582ad6a5a91a9de74e0f9

reference_url

https://github.com/django/django/commit/beb3f3d55940d9aa7198bf9d424ab74e873aec3d

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/beb3f3d55940d9aa7198bf9d424ab74e873aec3d

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-100.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-100.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-36053

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-36053

reference_url

https://www.djangoproject.com/weblog/2023/jul/03/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/jul/03/security-releases

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040225
reference_id	1040225
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040225

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2218004
reference_id	2218004
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2218004

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://www.debian.org/security/2023/dsa-5465

reference_id

dsa-5465

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://www.debian.org/security/2023/dsa-5465

reference_url

https://lists.debian.org/debian-lts-announce/2023/07/msg00022.html

reference_id

msg00022.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://lists.debian.org/debian-lts-announce/2023/07/msg00022.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A/

reference_id

NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NRDGTUN4LTI6HG4TWR3JYLSFVXPZT42A/

reference_url	https://access.redhat.com/errata/RHSA-2023:4692
reference_id	RHSA-2023:4692
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4692

reference_url	https://access.redhat.com/errata/RHSA-2023:4693
reference_id	RHSA-2023:4693
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4693

reference_url	https://access.redhat.com/errata/RHSA-2023:5931
reference_id	RHSA-2023:5931
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5931

reference_url	https://access.redhat.com/errata/RHSA-2023:6818
reference_id	RHSA-2023:6818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6818

reference_url	https://access.redhat.com/errata/RHSA-2024:0212
reference_id	RHSA-2024:0212
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:0212

reference_url	https://access.redhat.com/errata/RHSA-2024:1878
reference_id	RHSA-2024:1878
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1878

reference_url

https://docs.djangoproject.com/en/4.2/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://docs.djangoproject.com/en/4.2/releases/security/

reference_url

https://www.djangoproject.com/weblog/2023/jul/03/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://www.djangoproject.com/weblog/2023/jul/03/security-releases/

reference_url	https://usn.ubuntu.com/6203-1/
reference_id	USN-6203-1
reference_type
scores
url	https://usn.ubuntu.com/6203-1/

reference_url	https://usn.ubuntu.com/6203-2/
reference_id	USN-6203-2
reference_type
scores
url	https://usn.ubuntu.com/6203-2/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS/

reference_id

XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XG5DYKPNDCEHJQ3TKPJQO7QGSR4FAYMS/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

reference_id

ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-04-22T16:03:28Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

fixed_packages

url pkg:pypi/django@3.2.20

purl pkg:pypi/django@3.2.20

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.20

url pkg:pypi/django@4.1.10

purl pkg:pypi/django@4.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.10

url pkg:pypi/django@4.2.3

purl pkg:pypi/django@4.2.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.3

aliases BIT-django-2023-36053, CVE-2023-36053, GHSA-jh3w-4vvf-mjgr, PYSEC-2023-100

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-6tdg-t4nv-sbha

url VCID-7spe-cayc-4qb4

vulnerability_id VCID-7spe-cayc-4qb4

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31047.json

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-31047.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-31047

reference_id

reference_type

scores

value	0.0016
scoring_system	epss
scoring_elements	0.36848
published_at	2026-06-12T12:55:00Z

value	0.0016
scoring_system	epss
scoring_elements	0.36668
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-31047

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31047
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-31047

reference_url

https://docs.djangoproject.com/en/4.2/releases/security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.2/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.6
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-r3xc-prgr-mg9p

reference_id

reference_type

scores

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-r3xc-prgr-mg9p

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/21b1b1fc03e5f9e9f8c977ee6e35618dd3b353dd

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/21b1b1fc03e5f9e9f8c977ee6e35618dd3b353dd

reference_url

https://github.com/django/django/commit/e7c3a2ccc3a562328600be05068ed9149e12ce64

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/e7c3a2ccc3a562328600be05068ed9149e12ce64

reference_url

https://github.com/django/django/commit/eed53d0011622e70b936e203005f0e6f4ac48965

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/eed53d0011622e70b936e203005f0e6f4ac48965

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-61.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-61.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW

reference_url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW/
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DNEHD6N435OE2XUFGDAAVAXSYWLCUBFD

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/DNEHD6N435OE2XUFGDAAVAXSYWLCUBFD

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-31047

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-31047

reference_url

https://security.netapp.com/advisory/ntap-20230609-0008

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20230609-0008

reference_url

https://www.djangoproject.com/weblog/2023/may/03/security-releases

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/may/03/security-releases

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035467
reference_id	1035467
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1035467

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2192565
reference_id	2192565
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2192565

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW/

reference_id

A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A45VKTUVQ2BN6D5ZLZGCM774R6QGFOHW/

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DNEHD6N435OE2XUFGDAAVAXSYWLCUBFD/

reference_id

DNEHD6N435OE2XUFGDAAVAXSYWLCUBFD

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/DNEHD6N435OE2XUFGDAAVAXSYWLCUBFD/

reference_url

https://security.netapp.com/advisory/ntap-20230609-0008/

reference_id

ntap-20230609-0008

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://security.netapp.com/advisory/ntap-20230609-0008/

reference_url	https://access.redhat.com/errata/RHSA-2023:4591
reference_id	RHSA-2023:4591
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:4591

reference_url	https://access.redhat.com/errata/RHSA-2023:5931
reference_id	RHSA-2023:5931
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5931

reference_url	https://access.redhat.com/errata/RHSA-2023:6818
reference_id	RHSA-2023:6818
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6818

reference_url

https://docs.djangoproject.com/en/4.2/releases/security/

reference_id

security

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://docs.djangoproject.com/en/4.2/releases/security/

reference_url

https://www.djangoproject.com/weblog/2023/may/03/security-releases/

reference_id

security-releases

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-01-29T15:49:48Z/

url

https://www.djangoproject.com/weblog/2023/may/03/security-releases/

reference_url	https://usn.ubuntu.com/6054-1/
reference_id	USN-6054-1
reference_type
scores
url	https://usn.ubuntu.com/6054-1/

reference_url	https://usn.ubuntu.com/6054-2/
reference_id	USN-6054-2
reference_type
scores
url	https://usn.ubuntu.com/6054-2/

fixed_packages

url pkg:pypi/django@3.2.19

purl pkg:pypi/django@3.2.19

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.19

url pkg:pypi/django@4.1.9

purl pkg:pypi/django@4.1.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.9

url pkg:pypi/django@4.2.1

purl pkg:pypi/django@4.2.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.1

aliases BIT-django-2023-31047, CVE-2023-31047, GHSA-r3xc-prgr-mg9p, PYSEC-2023-61

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-7spe-cayc-4qb4

url VCID-9ge1-u71f-rbaw

vulnerability_id VCID-9ge1-u71f-rbaw

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41164.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-41164.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-41164

reference_id

reference_type

scores

value	0.00406
scoring_system	epss
scoring_elements	0.61609
published_at	2026-06-12T12:55:00Z

value	0.00406
scoring_system	epss
scoring_elements	0.61506
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/4.2/releases/security

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.2/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-7h4p-27mh-hmrw

reference_id

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-7h4p-27mh-hmrw

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/6f030b1149bd8fa4ba90452e77cb3edc095ce54e

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/6f030b1149bd8fa4ba90452e77cb3edc095ce54e

reference_url

https://github.com/django/django/commit/9c51b4dcfa0cefcb48231f4d71cafa80821f87b9

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/9c51b4dcfa0cefcb48231f4d71cafa80821f87b9

reference_url

https://github.com/django/django/commit/ba00bc5ec6a7eff5e08be438f7b5b0e9574e8ff0

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/ba00bc5ec6a7eff5e08be438f7b5b0e9574e8ff0

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-225.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-225.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-41164

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-41164

reference_url

https://security.netapp.com/advisory/ntap-20231214-0002

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231214-0002

reference_url

https://www.djangoproject.com/weblog/2023/sep/04/security-releases

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

value	6.9
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/sep/04/security-releases

reference_url	https://www.djangoproject.com/weblog/2023/sep/04/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2023/sep/04/security-releases/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051226
reference_id	1051226
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1051226

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2237258
reference_id	2237258
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2237258

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://access.redhat.com/errata/RHSA-2023:5208
reference_id	RHSA-2023:5208
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:5208

reference_url	https://access.redhat.com/errata/RHSA-2024:1878
reference_id	RHSA-2024:1878
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1878

reference_url	https://access.redhat.com/errata/RHSA-2024:2010
reference_id	RHSA-2024:2010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2010

reference_url	https://usn.ubuntu.com/6378-1/
reference_id	USN-6378-1
reference_type
scores
url	https://usn.ubuntu.com/6378-1/

reference_url	https://usn.ubuntu.com/6414-2/
reference_id	USN-6414-2
reference_type
scores
url	https://usn.ubuntu.com/6414-2/

fixed_packages

url pkg:pypi/django@3.2.21

purl pkg:pypi/django@3.2.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.21

url pkg:pypi/django@4.1.11

purl pkg:pypi/django@4.1.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.11

url pkg:pypi/django@4.2.5

purl pkg:pypi/django@4.2.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.5

aliases BIT-django-2023-41164, CVE-2023-41164, GHSA-7h4p-27mh-hmrw, PYSEC-2023-225

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-9ge1-u71f-rbaw

url VCID-beas-dwx6-1ffp

vulnerability_id VCID-beas-dwx6-1ffp

summary

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8.
The methods `QuerySet.filter()`, `QuerySet.exclude()`, and `QuerySet.get()`, and the class `Q()`, are subject to SQL injection when using a suitably crafted dictionary, with dictionary expansion, as the `_connector` argument.
Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected.
Django would like to thank cyberstan for reporting this issue.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64459.json

reference_id

reference_type

scores

value	8.3
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64459.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-64459

reference_id

reference_type

scores

value	0.00282
scoring_system	epss
scoring_elements	0.51956
published_at	2026-06-11T12:55:00Z

value	0.00282
scoring_system	epss
scoring_elements	0.52086
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/dev/releases/security

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/dev/releases/security

reference_url

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/06dd38324ac3d60d83d9f3adabf0dcdf423d2a85

reference_url

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/06dd38324ac3d60d83d9f3adabf0dcdf423d2a85

reference_url

https://github.com/django/django/commit/59ae82e67053d281ff4562a24bbba21299f0a7d4

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/59ae82e67053d281ff4562a24bbba21299f0a7d4

reference_url

https://github.com/django/django/commit/6703f364d767e949c5b0e4016433ef75063b4f9b

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/6703f364d767e949c5b0e4016433ef75063b4f9b

reference_url

https://github.com/django/django/commit/72d2c87431f2ae0431d65d0ec792047f078c8241

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/72d2c87431f2ae0431d65d0ec792047f078c8241

reference_url

https://github.com/omarkurt/django-connector-CVE-2025-64459-testbed

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/omarkurt/django-connector-CVE-2025-64459-testbed

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-108.yaml

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-108.yaml

reference_url

https://shivasurya.me/security/django/2025/11/07/django-sql-injection-CVE-2025-64459.html

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://shivasurya.me/security/django/2025/11/07/django-sql-injection-CVE-2025-64459.html

reference_url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases

reference_id

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120139
reference_id	1120139
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1120139

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2412651
reference_id	2412651
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2412651

reference_url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52456.py
reference_id	CVE-2025-64459
reference_type	exploit
scores
url	https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/multiple/webapps/52456.py

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-64459

reference_id

CVE-2025-64459

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-64459

reference_url

reference_id

django-announce

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-11-06T04:55:36Z/

url

https://github.com/advisories/GHSA-frmv-pr5f-9mcr

reference_url

reference_id

GHSA-frmv-pr5f-9mcr

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-frmv-pr5f-9mcr

reference_url	https://access.redhat.com/errata/RHSA-2025:23069
reference_id	RHSA-2025:23069
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23069

reference_url	https://access.redhat.com/errata/RHSA-2025:23070
reference_id	RHSA-2025:23070
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23070

reference_url	https://access.redhat.com/errata/RHSA-2025:23130
reference_id	RHSA-2025:23130
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23130

reference_url	https://access.redhat.com/errata/RHSA-2025:23131
reference_id	RHSA-2025:23131
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23131

reference_url	https://access.redhat.com/errata/RHSA-2025:23133
reference_id	RHSA-2025:23133
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23133

reference_url	https://access.redhat.com/errata/RHSA-2025:23196
reference_id	RHSA-2025:23196
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:23196

reference_url	https://access.redhat.com/errata/RHSA-2026:1596
reference_id	RHSA-2026:1596
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2026:1596

reference_url

https://docs.djangoproject.com/en/dev/releases/security/

reference_id

security

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-11-06T04:55:36Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases/

reference_id

security-releases

reference_type

scores

value	9.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2025-11-06T04:55:36Z/

url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases/

reference_url	https://usn.ubuntu.com/7859-1/
reference_id	USN-7859-1
reference_type
scores
url	https://usn.ubuntu.com/7859-1/

fixed_packages

url pkg:pypi/django@4.2.26

purl pkg:pypi/django@4.2.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.26

url pkg:pypi/django@5.1.14

purl pkg:pypi/django@5.1.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.14

url pkg:pypi/django@5.2.8

purl pkg:pypi/django@5.2.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-1g9h-ryet-2ffs

vulnerability	VCID-1mp4-kq35-1ba7

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8tz7-vjwz-rycs

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-h5qf-zbcz-qygg

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-m4mg-yd86-dyfw

vulnerability	VCID-n915-wj16-wka6

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-tvk1-4am9-f3cf

vulnerability	VCID-z7sj-r61n-qbcd

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.8

url pkg:pypi/django@6.0a1

purl pkg:pypi/django@6.0a1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-sbwy-buwj-gkd2

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@6.0a1

aliases BIT-django-2025-64459, CVE-2025-64459, GHSA-frmv-pr5f-9mcr, PYSEC-2025-108

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-beas-dwx6-1ffp

url VCID-d2cw-526n-mbem

vulnerability_id VCID-d2cw-526n-mbem

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27351.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-27351.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-27351

reference_id

reference_type

scores

value	0.02611
scoring_system	epss
scoring_elements	0.86024
published_at	2026-06-12T12:55:00Z

value	0.02611
scoring_system	epss
scoring_elements	0.85974
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/5.0/releases/security

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/5.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/072963e4c4d0b3a7a8c5412bc0c7d27d1a9c3521

reference_url

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/072963e4c4d0b3a7a8c5412bc0c7d27d1a9c3521

reference_url

https://github.com/django/django/commit/3394fc6132436eca89e997083bae9985fb7e761e

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3394fc6132436eca89e997083bae9985fb7e761e

reference_url

https://github.com/django/django/commit/3c9a2771cc80821e041b16eb36c1c37af5349d4a

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3c9a2771cc80821e041b16eb36c1c37af5349d4a

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2024-47.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2024-47.yaml

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://www.djangoproject.com/weblog/2024/mar/04/security-releases

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2024/mar/04/security-releases

reference_url

http://www.openwall.com/lists/oss-security/2024/03/04/1

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

http://www.openwall.com/lists/oss-security/2024/03/04/1

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2266045
reference_id	2266045
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2266045

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-27351

reference_id

CVE-2024-27351

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-27351

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX/

reference_id

D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX/

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://github.com/advisories/GHSA-vm8q-m57g-pff3

reference_id

GHSA-vm8q-m57g-pff3

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-vm8q-m57g-pff3

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://access.redhat.com/errata/RHSA-2024:1640
reference_id	RHSA-2024:1640
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1640

reference_url	https://access.redhat.com/errata/RHSA-2024:1878
reference_id	RHSA-2024:1878
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1878

reference_url	https://access.redhat.com/errata/RHSA-2024:3781
reference_id	RHSA-2024:3781
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:3781

reference_url	https://access.redhat.com/errata/RHSA-2024:5662
reference_id	RHSA-2024:5662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5662

reference_url	https://access.redhat.com/errata/RHSA-2025:4187
reference_id	RHSA-2025:4187
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:4187

reference_url

https://docs.djangoproject.com/en/5.0/releases/security/

reference_id

security

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://docs.djangoproject.com/en/5.0/releases/security/

reference_url

https://www.djangoproject.com/weblog/2024/mar/04/security-releases/

reference_id

security-releases

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://www.djangoproject.com/weblog/2024/mar/04/security-releases/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6/

reference_id

SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6/

reference_url	https://usn.ubuntu.com/6674-1/
reference_id	USN-6674-1
reference_type
scores
url	https://usn.ubuntu.com/6674-1/

reference_url	https://usn.ubuntu.com/6674-2/
reference_id	USN-6674-2
reference_type
scores
url	https://usn.ubuntu.com/6674-2/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

reference_id

ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-04-20T19:41:21Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

fixed_packages

url pkg:pypi/django@3.2.25

purl pkg:pypi/django@3.2.25

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.25

url pkg:pypi/django@4.2.11

purl pkg:pypi/django@4.2.11

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.11

url pkg:pypi/django@5.0.3

purl pkg:pypi/django@5.0.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-6wvp-47qa-m7bc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.3

aliases BIT-django-2024-27351, CVE-2024-27351, GHSA-vm8q-m57g-pff3, PYSEC-2024-47

risk_score 3.4

exploitability 0.5

weighted_severity 6.8

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-d2cw-526n-mbem

url VCID-db6w-yj8t-sfg4

vulnerability_id VCID-db6w-yj8t-sfg4

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-57833.json

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-57833.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-57833

reference_id

reference_type

scores

value	0.00074
scoring_system	epss
scoring_elements	0.22648
published_at	2026-06-12T12:55:00Z

value	0.00074
scoring_system	epss
scoring_elements	0.22452
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/dev/releases/security

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/dev/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-6w2r-r2m5-xq5w

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://github.com/advisories/GHSA-6w2r-r2m5-xq5w

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/102965ea93072fe3c39a30be437c683ec1106ef5

reference_url

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/102965ea93072fe3c39a30be437c683ec1106ef5

reference_url

https://github.com/django/django/commit/31334e6965ad136a5e369993b01721499c5d1a92

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/31334e6965ad136a5e369993b01721499c5d1a92

reference_url

https://github.com/django/django/commit/4c044fcc866ec226f612c475950b690b0139d243

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/4c044fcc866ec226f612c475950b690b0139d243

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-105.yaml

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-105.yaml

reference_url

https://lists.debian.org/debian-lts-announce/2025/09/msg00017.html

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2025/09/msg00017.html

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-57833

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-57833

reference_url

https://www.djangoproject.com/weblog/2025/sep/03/security-releases

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2025/sep/03/security-releases

reference_url

http://www.openwall.com/lists/oss-security/2025/09/03/3

reference_id

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2025/09/03/3

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1113865
reference_id	1113865
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1113865

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2392990
reference_id	2392990
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2392990

reference_url

reference_id

django-announce

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-08T17:33:03Z/

url

https://medium.com/@EyalSec/django-unauthenticated-0-click-rce-and-sql-injection-using-default-configuration-059964f3f898

reference_url

reference_id

django-unauthenticated-0-click-rce-and-sql-injection-using-default-configuration-059964f3f898

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-08T17:33:03Z/

url

https://medium.com/@EyalSec/django-unauthenticated-0-click-rce-and-sql-injection-using-default-configuration-059964f3f898

reference_url	https://access.redhat.com/errata/RHSA-2025:16403
reference_id	RHSA-2025:16403
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16403

reference_url	https://access.redhat.com/errata/RHSA-2025:16404
reference_id	RHSA-2025:16404
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16404

reference_url	https://access.redhat.com/errata/RHSA-2025:16487
reference_id	RHSA-2025:16487
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16487

reference_url	https://access.redhat.com/errata/RHSA-2025:16514
reference_id	RHSA-2025:16514
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16514

reference_url	https://access.redhat.com/errata/RHSA-2025:17498
reference_id	RHSA-2025:17498
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17498

reference_url	https://access.redhat.com/errata/RHSA-2025:17499
reference_id	RHSA-2025:17499
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17499

reference_url	https://access.redhat.com/errata/RHSA-2025:17500
reference_id	RHSA-2025:17500
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17500

reference_url	https://access.redhat.com/errata/RHSA-2025:17606
reference_id	RHSA-2025:17606
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17606

reference_url	https://access.redhat.com/errata/RHSA-2025:17613
reference_id	RHSA-2025:17613
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17613

reference_url	https://access.redhat.com/errata/RHSA-2025:17614
reference_id	RHSA-2025:17614
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:17614

reference_url

https://docs.djangoproject.com/en/dev/releases/security/

reference_id

security

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-08T17:33:03Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url

https://www.djangoproject.com/weblog/2025/sep/03/security-releases/

reference_id

security-releases

reference_type

scores

value	7.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:L/A:N

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

value	Track*
scoring_system	ssvc
scoring_elements	SSVCv2/E:P/A:N/T:T/P:M/B:A/M:M/D:R/2025-09-08T17:33:03Z/

url

https://www.djangoproject.com/weblog/2025/sep/03/security-releases/

reference_url	https://usn.ubuntu.com/7736-1/
reference_id	USN-7736-1
reference_type
scores
url	https://usn.ubuntu.com/7736-1/

fixed_packages

url pkg:pypi/django@4.2.24

purl pkg:pypi/django@4.2.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.24

url pkg:pypi/django@5.1.12

purl pkg:pypi/django@5.1.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-xkrz-p214-hqhp

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.12

url pkg:pypi/django@5.2.6

purl pkg:pypi/django@5.2.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-1g9h-ryet-2ffs

vulnerability	VCID-1mp4-kq35-1ba7

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8tz7-vjwz-rycs

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-h5qf-zbcz-qygg

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-m4mg-yd86-dyfw

vulnerability	VCID-n915-wj16-wka6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-tvk1-4am9-f3cf

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-z7sj-r61n-qbcd

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.6

aliases BIT-django-2025-57833, CVE-2025-57833, GHSA-6w2r-r2m5-xq5w, PYSEC-2025-105

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-db6w-yj8t-sfg4

url VCID-fmpr-bhrf-17gm

vulnerability_id VCID-fmpr-bhrf-17gm

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34265.json

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-34265.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-34265

reference_id

reference_type

scores

value	0.92834
scoring_system	epss
scoring_elements	0.99775
published_at	2026-06-12T12:55:00Z

value	0.92834
scoring_system	epss
scoring_elements	0.99774
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323

reference_url

https://docs.djangoproject.com/en/4.0/releases/security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	8.1
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/0dc9c016fadb71a067e5a42be30164e3f96c0492

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/0dc9c016fadb71a067e5a42be30164e3f96c0492

reference_url

https://github.com/django/django/commit/5e2f4ddf2940704a26a4ac782b851989668d74db

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/5e2f4ddf2940704a26a4ac782b851989668d74db

reference_url

https://github.com/django/django/commit/877c800f255ccaa7abde1fb944de45d1616f5cc9

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/877c800f255ccaa7abde1fb944de45d1616f5cc9

reference_url

https://github.com/django/django/commit/a9010fe5555e6086a9d9ae50069579400ef0685e

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/a9010fe5555e6086a9d9ae50069579400ef0685e

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-213.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-213.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://security.netapp.com/advisory/ntap-20220818-0006

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220818-0006

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/jul/04/security-releases

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/jul/04/security-releases

reference_url	https://www.djangoproject.com/weblog/2022/jul/04/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2022/jul/04/security-releases/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014541
reference_id	1014541
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1014541

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2102896
reference_id	2102896
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2102896

reference_url

https://security.archlinux.org/AVG-2788

reference_id

AVG-2788

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2788

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-34265

reference_id

CVE-2022-34265

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-34265

reference_url

https://github.com/advisories/GHSA-p64x-8rxx-wf6q

reference_id

GHSA-p64x-8rxx-wf6q

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-p64x-8rxx-wf6q

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://access.redhat.com/errata/RHSA-2022:5738
reference_id	RHSA-2022:5738
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5738

reference_url	https://access.redhat.com/errata/RHSA-2022:8506
reference_id	RHSA-2022:8506
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8506

reference_url	https://usn.ubuntu.com/5501-1/
reference_id	USN-5501-1
reference_type
scores
url	https://usn.ubuntu.com/5501-1/

fixed_packages

url pkg:pypi/django@3.2.14

purl pkg:pypi/django@3.2.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-wpt2-535q-3yfe

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.14

url pkg:pypi/django@4.0.6

purl pkg:pypi/django@4.0.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-wpt2-535q-3yfe

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.6

aliases BIT-django-2022-34265, CVE-2022-34265, GHSA-p64x-8rxx-wf6q, PYSEC-2022-213

risk_score 10.0

exploitability 2.0

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-fmpr-bhrf-17gm

url VCID-j4rs-235r-dkfj

vulnerability_id VCID-j4rs-235r-dkfj

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43665.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-43665.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-43665

reference_id

reference_type

scores

value	0.0279
scoring_system	epss
scoring_elements	0.86406
published_at	2026-06-11T12:55:00Z

value	0.0279
scoring_system	epss
scoring_elements	0.86457
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/4.2/releases/security

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.2/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-h8gc-pgj2-vjm3

reference_id

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-h8gc-pgj2-vjm3

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/be9c27c4d18c2e6a5be8af4e53c0797440794473

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/be9c27c4d18c2e6a5be8af4e53c0797440794473

reference_url

https://github.com/django/django/commit/c7b7024742250414e426ad49fb80db943e7ba4e8

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/c7b7024742250414e426ad49fb80db943e7ba4e8

reference_url

https://github.com/django/django/commit/ccdade1a0262537868d7ca64374de3d957ca50c5

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/ccdade1a0262537868d7ca64374de3d957ca50c5

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-226.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-226.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HJFRPUHDYJHBH3KYHSPGULQM4JN7BMSU

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-43665

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-43665

reference_url

https://security.netapp.com/advisory/ntap-20231221-0001

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231221-0001

reference_url

https://www.djangoproject.com/weblog/2023/oct/04/security-releases

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/oct/04/security-releases

reference_url	https://www.djangoproject.com/weblog/2023/oct/04/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2023/oct/04/security-releases/

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053475
reference_id	1053475
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053475

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2241046
reference_id	2241046
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2241046

reference_url	https://access.redhat.com/errata/RHSA-2023:6158
reference_id	RHSA-2023:6158
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:6158

reference_url	https://access.redhat.com/errata/RHSA-2024:1536
reference_id	RHSA-2024:1536
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1536

reference_url	https://access.redhat.com/errata/RHSA-2024:1878
reference_id	RHSA-2024:1878
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1878

reference_url	https://access.redhat.com/errata/RHSA-2024:2010
reference_id	RHSA-2024:2010
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2010

reference_url	https://usn.ubuntu.com/6414-1/
reference_id	USN-6414-1
reference_type
scores
url	https://usn.ubuntu.com/6414-1/

reference_url	https://usn.ubuntu.com/6414-2/
reference_id	USN-6414-2
reference_type
scores
url	https://usn.ubuntu.com/6414-2/

fixed_packages

url pkg:pypi/django@3.2.22

purl pkg:pypi/django@3.2.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.22

url pkg:pypi/django@4.1.12

purl pkg:pypi/django@4.1.12

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.12

url pkg:pypi/django@4.2.6

purl pkg:pypi/django@4.2.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.6

aliases BIT-django-2023-43665, CVE-2023-43665, GHSA-h8gc-pgj2-vjm3, PYSEC-2023-226

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-j4rs-235r-dkfj

url VCID-jspj-r34n-jubz

vulnerability_id VCID-jspj-r34n-jubz

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23969.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-23969.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-23969

reference_id

reference_type

scores

value	0.05085
scoring_system	epss
scoring_elements	0.90018
published_at	2026-06-11T12:55:00Z

value	0.05085
scoring_system	epss
scoring_elements	0.9005
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-23969

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23969
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-23969

reference_url

https://docs.djangoproject.com/en/4.1/releases/security

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.1/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-q2jf-h9jm-m7p4

reference_id

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-q2jf-h9jm-m7p4

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/4452642f193533e288a52c02efb5bbc766a68f95

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/4452642f193533e288a52c02efb5bbc766a68f95

reference_url

https://github.com/django/django/commit/9d7bd5a56b1ce0576e8e07a8001373576d277942

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/9d7bd5a56b1ce0576e8e07a8001373576d277942

reference_url

https://github.com/django/django/commit/c7e0151fdf33e1b11d488b6f67b94fdf3a30614a

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/c7e0151fdf33e1b11d488b6f67b94fdf3a30614a

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-12.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-12.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-23969

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-23969

reference_url

https://security.netapp.com/advisory/ntap-20230302-0007

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20230302-0007

reference_url

https://www.djangoproject.com/weblog/2023/feb/01/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/feb/01/security-releases

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030251
reference_id	1030251
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1030251

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2166457
reference_id	2166457
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2166457

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_id

HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_id

LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_url

https://lists.debian.org/debian-lts-announce/2023/02/msg00000.html

reference_id

msg00000.html

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://lists.debian.org/debian-lts-announce/2023/02/msg00000.html

reference_url

https://security.netapp.com/advisory/ntap-20230302-0007/

reference_id

ntap-20230302-0007

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://security.netapp.com/advisory/ntap-20230302-0007/

reference_url	https://access.redhat.com/errata/RHSA-2023:2097
reference_id	RHSA-2023:2097
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2097

reference_url	https://access.redhat.com/errata/RHSA-2023:2101
reference_id	RHSA-2023:2101
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2101

reference_url

https://docs.djangoproject.com/en/4.1/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://docs.djangoproject.com/en/4.1/releases/security/

reference_url

https://www.djangoproject.com/weblog/2023/feb/01/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-03-27T14:17:12Z/

url

https://www.djangoproject.com/weblog/2023/feb/01/security-releases/

reference_url	https://usn.ubuntu.com/5837-1/
reference_id	USN-5837-1
reference_type
scores
url	https://usn.ubuntu.com/5837-1/

reference_url	https://usn.ubuntu.com/5837-2/
reference_id	USN-5837-2
reference_type
scores
url	https://usn.ubuntu.com/5837-2/

fixed_packages

url pkg:pypi/django@3.2.17

purl pkg:pypi/django@3.2.17

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.17

url pkg:pypi/django@4.0.9

purl pkg:pypi/django@4.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.9

url pkg:pypi/django@4.1.6

purl pkg:pypi/django@4.1.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.6

url pkg:pypi/django@4.2a1

purl pkg:pypi/django@4.2a1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2a1

aliases BIT-django-2023-23969, CVE-2023-23969, GHSA-q2jf-h9jm-m7p4, PYSEC-2023-12

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-jspj-r34n-jubz

url VCID-nhzy-7qdm-wbg8

vulnerability_id VCID-nhzy-7qdm-wbg8

summary In Django 3.2 before 3.2.16, 4.0 before 4.0.8, and 4.1 before 4.1.2, internationalized URLs were subject to a potential denial of service attack via the locale parameter, which is treated as a regular expression.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41323.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-41323.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-41323

reference_id

reference_type

scores

value	0.16325
scoring_system	epss
scoring_elements	0.95021
published_at	2026-06-12T12:55:00Z

value	0.16325
scoring_system	epss
scoring_elements	0.95005
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-41323

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323

reference_url

https://docs.djangoproject.com/en/4.0/releases/security

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.0/releases/security

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/23f0093125ac2e553da6c1b2f9988eb6a3dd2ea1

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/23f0093125ac2e553da6c1b2f9988eb6a3dd2ea1

reference_url

https://github.com/django/django/commit/9d656ea51d9ea7105c0c0785783ac29d426a7d25

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/9d656ea51d9ea7105c0c0785783ac29d426a7d25

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-304.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-304.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_url

https://security.netapp.com/advisory/ntap-20221124-0001

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20221124-0001

reference_url

https://www.djangoproject.com/weblog/2022/oct/04/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/oct/04/security-releases

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2136130
reference_id	2136130
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2136130

reference_url

https://github.com/django/django/commit/5b6b257fa7ec37ff27965358800c67e2dd11c924

reference_id

5b6b257fa7ec37ff27965358800c67e2dd11c924

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://github.com/django/django/commit/5b6b257fa7ec37ff27965358800c67e2dd11c924

reference_url

https://security.archlinux.org/AVG-2809

reference_id

AVG-2809

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2809

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-41323

reference_id

CVE-2022-41323

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-41323

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B/

reference_id

FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FKYVMMR7RPM6AHJ2SBVM2LO6D3NGFY7B/

reference_url

https://github.com/advisories/GHSA-qrw5-5h28-6cmg

reference_id

GHSA-qrw5-5h28-6cmg

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qrw5-5h28-6cmg

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_id

HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_id

LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/

reference_url

https://security.netapp.com/advisory/ntap-20221124-0001/

reference_id

ntap-20221124-0001

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://security.netapp.com/advisory/ntap-20221124-0001/

reference_url	https://access.redhat.com/errata/RHSA-2023:0742
reference_id	RHSA-2023:0742
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:0742

reference_url	https://access.redhat.com/errata/RHSA-2023:2097
reference_id	RHSA-2023:2097
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2023:2097

reference_url

https://docs.djangoproject.com/en/4.0/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://docs.djangoproject.com/en/4.0/releases/security/

reference_url

https://www.djangoproject.com/weblog/2022/oct/04/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://www.djangoproject.com/weblog/2022/oct/04/security-releases/

reference_url	https://usn.ubuntu.com/5653-1/
reference_id	USN-5653-1
reference_type
scores
url	https://usn.ubuntu.com/5653-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77/

reference_id

VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VZS4G6NSZWPTVXMMZHJOJVQEPL3QTO77/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP/

reference_id

YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-14T14:39:15Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJB6FUBBLVKKG655UMTLQNN6UQ6EDLSP/

fixed_packages

url pkg:pypi/django@3.2.16

purl pkg:pypi/django@3.2.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.16

url pkg:pypi/django@4.0.8

purl pkg:pypi/django@4.0.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.8

url pkg:pypi/django@4.1.2

purl pkg:pypi/django@4.1.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.2

aliases BIT-django-2022-41323, CVE-2022-41323, GHSA-qrw5-5h28-6cmg, PYSEC-2022-304

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-nhzy-7qdm-wbg8

url VCID-qsme-8a2n-23fs

vulnerability_id VCID-qsme-8a2n-23fs

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46695.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2023-46695.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2023-46695

reference_id

reference_type

scores

value	0.03582
scoring_system	epss
scoring_elements	0.88057
published_at	2026-06-12T12:55:00Z

value	0.03582
scoring_system	epss
scoring_elements	0.88016
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2023-46695

reference_url

https://docs.djangoproject.com/en/4.2/releases/security

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.2/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

https://github.com/advisories/GHSA-qmf9-6jqf-j8fq

reference_id

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qmf9-6jqf-j8fq

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/048a9ebb6ea468426cb4e57c71572cbbd975517f

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/048a9ebb6ea468426cb4e57c71572cbbd975517f

reference_url

https://github.com/django/django/commit/4965bfdde2e5a5c883685019e57d123a3368a75e

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/4965bfdde2e5a5c883685019e57d123a3368a75e

reference_url

https://github.com/django/django/commit/f9a7fb8466a7ba4857eaf930099b5258f3eafb2b

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/f9a7fb8466a7ba4857eaf930099b5258f3eafb2b

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-222.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2023-222.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2023-46695

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2023-46695

reference_url

https://security.netapp.com/advisory/ntap-20231214-0001

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20231214-0001

reference_url

https://www.djangoproject.com/weblog/2023/nov/01/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.7
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2023/nov/01/security-releases

reference_url	https://www.djangoproject.com/weblog/2023/nov/01/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2023/nov/01/security-releases/

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2247097
reference_id	2247097
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2247097

fixed_packages

url pkg:pypi/django@3.2.23

purl pkg:pypi/django@3.2.23

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.23

url pkg:pypi/django@4.1.13

purl pkg:pypi/django@4.1.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.1.13

url pkg:pypi/django@4.2.7

purl pkg:pypi/django@4.2.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.7

aliases BIT-django-2023-46695, CVE-2023-46695, GHSA-qmf9-6jqf-j8fq, PYSEC-2023-222

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-qsme-8a2n-23fs

url VCID-tudc-7sgh-nkda

vulnerability_id VCID-tudc-7sgh-nkda

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45231.json

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-45231.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-45231

reference_id

reference_type

scores

value	0.00235
scoring_system	epss
scoring_elements	0.46576
published_at	2026-06-11T12:55:00Z

value	0.00235
scoring_system	epss
scoring_elements	0.46721
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/dev/releases/security

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/dev/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3c733c78d6f8e50296d6e248968b6516c92a53ca

reference_url

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3c733c78d6f8e50296d6e248968b6516c92a53ca

reference_url

https://github.com/django/django/commit/96d84047715ea1715b4bd1594e46122b8a77b9e2

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/96d84047715ea1715b4bd1594e46122b8a77b9e2

reference_url

https://github.com/django/django/commit/bf4888d317ba4506d091eeac6e8b4f1fcc731199

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/bf4888d317ba4506d091eeac6e8b4f1fcc731199

reference_url

https://www.djangoproject.com/weblog/2024/sep/03/security-releases

reference_id

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2024/sep/03/security-releases

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2314496
reference_id	2314496
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2314496

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-45231

reference_id

CVE-2024-45231

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-45231

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	3.7
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	6.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-30T16:35:34Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://github.com/advisories/GHSA-rrqc-c2jx-6jgv

reference_id

GHSA-rrqc-c2jx-6jgv

reference_type

scores

value	MODERATE
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-rrqc-c2jx-6jgv

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url

https://docs.djangoproject.com/en/dev/releases/security/

reference_id

security

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-30T16:35:34Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url

https://www.djangoproject.com/weblog/2024/sep/03/security-releases/

reference_id

security-releases

reference_type

scores

value	5.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2024-10-30T16:35:34Z/

url

https://www.djangoproject.com/weblog/2024/sep/03/security-releases/

reference_url	https://usn.ubuntu.com/6987-1/
reference_id	USN-6987-1
reference_type
scores
url	https://usn.ubuntu.com/6987-1/

fixed_packages

url pkg:pypi/django@4.2.16

purl pkg:pypi/django@4.2.16

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.16

url pkg:pypi/django@5.0.9

purl pkg:pypi/django@5.0.9

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wvp-47qa-m7bc

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.9

url pkg:pypi/django@5.1.1

purl pkg:pypi/django@5.1.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-6wvp-47qa-m7bc

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.1

aliases CVE-2024-45231, GHSA-rrqc-c2jx-6jgv

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-tudc-7sgh-nkda

url VCID-ufv7-y5a7-fugg

vulnerability_id VCID-ufv7-y5a7-fugg

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24680.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2024-24680.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2024-24680

reference_id

reference_type

scores

value	0.01394
scoring_system	epss
scoring_elements	0.80798
published_at	2026-06-11T12:55:00Z

value	0.01394
scoring_system	epss
scoring_elements	0.80858
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/5.0/releases/security

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/5.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/16a8fe18a3b81250f4fa57e3f93f0599dc4895bc

reference_url

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/16a8fe18a3b81250f4fa57e3f93f0599dc4895bc

reference_url

https://github.com/django/django/commit/55519d6cf8998fe4c8f5c8abffc2b10a7c3d14e9

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/55519d6cf8998fe4c8f5c8abffc2b10a7c3d14e9

reference_url

https://github.com/django/django/commit/572ea07e84b38ea8de0551f4b4eda685d91d09d2

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/572ea07e84b38ea8de0551f4b4eda685d91d09d2

reference_url

https://github.com/django/django/commit/c1171ffbd570db90ca206c30f8e2b9f691243820

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/c1171ffbd570db90ca206c30f8e2b9f691243820

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2024-28.yaml

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2024-28.yaml

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D
reference_id
reference_type
scores
url	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_url

https://www.djangoproject.com/weblog/2024/feb/06/security-releases

reference_id

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2024/feb/06/security-releases

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2261856
reference_id	2261856
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2261856

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2024-24680

reference_id

CVE-2024-24680

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2024-24680

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX/

reference_id

D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D2JIRXEDP4ZET5KFMAPPYSK663Q52NEX/

reference_url

https://groups.google.com/forum/#%21forum/django-announce

reference_id

django-announce

reference_type

scores

value	5.9
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	8.2
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://groups.google.com/forum/#%21forum/django-announce

reference_url

https://github.com/advisories/GHSA-xxj9-f6rv-m3x4

reference_id

GHSA-xxj9-f6rv-m3x4

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-xxj9-f6rv-m3x4

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://access.redhat.com/errata/RHSA-2024:1057
reference_id	RHSA-2024:1057
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1057

reference_url	https://access.redhat.com/errata/RHSA-2024:1640
reference_id	RHSA-2024:1640
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1640

reference_url	https://access.redhat.com/errata/RHSA-2024:1878
reference_id	RHSA-2024:1878
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:1878

reference_url	https://access.redhat.com/errata/RHSA-2024:2731
reference_id	RHSA-2024:2731
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:2731

reference_url	https://access.redhat.com/errata/RHSA-2024:5662
reference_id	RHSA-2024:5662
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2024:5662

reference_url

https://docs.djangoproject.com/en/5.0/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://docs.djangoproject.com/en/5.0/releases/security/

reference_url

https://www.djangoproject.com/weblog/2024/feb/06/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://www.djangoproject.com/weblog/2024/feb/06/security-releases/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6/

reference_id

SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SN2PLJGYSAAG5KUVIUFJYKD3BLQ4OSN6/

reference_url	https://usn.ubuntu.com/6623-1/
reference_id	USN-6623-1
reference_type
scores
url	https://usn.ubuntu.com/6623-1/

reference_url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

reference_id

ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-05-08T17:27:36Z/

url

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQJOMNRMVPCN5WMIZ7YSX5LQ7IR2NY4D/

fixed_packages

url pkg:pypi/django@3.2.24

purl pkg:pypi/django@3.2.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.24

url pkg:pypi/django@4.2.10

purl pkg:pypi/django@4.2.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-s9u4-39qe-pkh2

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.10

url pkg:pypi/django@5.0.2

purl pkg:pypi/django@5.0.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-26ua-dtzk-f7hs

vulnerability	VCID-6wvp-47qa-m7bc

vulnerability	VCID-78kz-svj1-ruet

vulnerability	VCID-8894-d73g-xbah

vulnerability	VCID-a4fn-xf8s-tye5

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-bu3p-xsjx-mfb2

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fcn8-q3dj-kye1

vulnerability	VCID-mja4-jz67-kbh6

vulnerability	VCID-pwja-anvz-c7hx

vulnerability	VCID-qjwt-hqsa-7bh2

vulnerability	VCID-szp5-kxju-ffa4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-w9sx-n8tk-jbc5

vulnerability	VCID-wwzx-eujh-sye1

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

vulnerability	VCID-z3vg-rtt7-vuem

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.0.2

aliases BIT-django-2024-24680, CVE-2024-24680, GHSA-xxj9-f6rv-m3x4, PYSEC-2024-28

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ufv7-y5a7-fugg

url VCID-wpt2-535q-3yfe

vulnerability_id VCID-wpt2-535q-3yfe

summary

references

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-36359

reference_id

reference_type

scores

value	0.0113
scoring_system	epss
scoring_elements	0.78797
published_at	2026-06-12T12:55:00Z

value	0.0113
scoring_system	epss
scoring_elements	0.78732
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323

reference_url

https://docs.djangoproject.com/en/4.0/releases/security

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/b3e4494d759202a3b6bf247fd34455bf13be5b80

reference_url

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/b3e4494d759202a3b6bf247fd34455bf13be5b80

reference_url

https://github.com/django/django/commit/b7d9529cbe0af4adabb6ea5d01ed8dcce3668fb3

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/b7d9529cbe0af4adabb6ea5d01ed8dcce3668fb3

reference_url

https://github.com/django/django/commit/bd062445cffd3f6cc6dcd20d13e2abed818fa173

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/bd062445cffd3f6cc6dcd20d13e2abed818fa173

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-245.yaml

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-245.yaml

reference_url

https://groups.google.com/g/django-announce/c/8cz--gvaJr4

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/g/django-announce/c/8cz--gvaJr4

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://security.netapp.com/advisory/ntap-20220915-0008

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220915-0008

reference_url

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/aug/03/security-releases

reference_url

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/aug/03/security-releases

reference_url	https://www.djangoproject.com/weblog/2022/aug/03/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2022/aug/03/security-releases/

reference_url

http://www.openwall.com/lists/oss-security/2022/08/03/1

reference_id

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2022/08/03/1

reference_url

https://security.archlinux.org/AVG-2810

reference_id

AVG-2810

reference_type

scores

value	Unknown
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2810

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2022-36359

reference_id

CVE-2022-36359

reference_type

scores

value	8.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-36359

reference_url

https://github.com/advisories/GHSA-8x94-hmjh-97hq

reference_id

GHSA-8x94-hmjh-97hq

reference_type

scores

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-8x94-hmjh-97hq

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://usn.ubuntu.com/5549-1/
reference_id	USN-5549-1
reference_type
scores
url	https://usn.ubuntu.com/5549-1/

fixed_packages

url pkg:pypi/django@3.2.15

purl pkg:pypi/django@3.2.15

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.15

url pkg:pypi/django@4.0.7

purl pkg:pypi/django@4.0.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.7

aliases BIT-django-2022-36359, CVE-2022-36359, GHSA-8x94-hmjh-97hq, PYSEC-2022-245

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-wpt2-535q-3yfe

url VCID-xkrz-p214-hqhp

vulnerability_id VCID-xkrz-p214-hqhp

summary

An issue was discovered in 5.1 before 5.1.14, 4.2 before 4.2.26, and 5.2 before 5.2.8.
NFKC normalization in Python is slow on Windows. As a consequence, `django.http.HttpResponseRedirect`, `django.http.HttpResponsePermanentRedirect`, and the shortcut `django.shortcuts.redirect`  were subject to a potential  denial-of-service attack via certain inputs with a very large number of Unicode characters.
Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected.
Django would like to thank Seokchan Yoon for reporting this issue.

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64458.json

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-64458.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-64458

reference_id

reference_type

scores

value	0.00025
scoring_system	epss
scoring_elements	0.07314
published_at	2026-06-11T12:55:00Z

value	0.00025
scoring_system	epss
scoring_elements	0.07356
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-64458

reference_url

https://docs.djangoproject.com/en/dev/releases/security

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/dev/releases/security

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3790593781d26168e7306b5b2f8ea0309de16242

reference_url

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/3790593781d26168e7306b5b2f8ea0309de16242

reference_url

https://github.com/django/django/commit/4f5d904b63751dea9ffc3b0e046404a7fa5881ac

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/4f5d904b63751dea9ffc3b0e046404a7fa5881ac

reference_url

https://github.com/django/django/commit/6e13348436fccf8f22982921d6a3a3e65c956a9f

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/6e13348436fccf8f22982921d6a3a3e65c956a9f

reference_url

https://github.com/django/django/commit/770eea38d7a0e9ba9455140b5a9a9e33618226a7

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/770eea38d7a0e9ba9455140b5a9a9e33618226a7

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-107.yaml

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-107.yaml

reference_url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2412649
reference_id	2412649
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2412649

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-64458

reference_id

CVE-2025-64458

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-64458

reference_url

reference_id

django-announce

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-05T16:20:23Z/

url

https://github.com/advisories/GHSA-qw25-v68c-qjf3

reference_url

reference_id

GHSA-qw25-v68c-qjf3

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	HIGH
scoring_system	cvssv3.1_qr
scoring_elements

url

https://github.com/advisories/GHSA-qw25-v68c-qjf3

reference_url

https://docs.djangoproject.com/en/dev/releases/security/

reference_id

security

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-05T16:20:23Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases/

reference_id

security-releases

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-11-05T16:20:23Z/

url

https://www.djangoproject.com/weblog/2025/nov/05/security-releases/

fixed_packages

url pkg:pypi/django@4.2.26

purl pkg:pypi/django@4.2.26

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.26

url pkg:pypi/django@5.1.14

purl pkg:pypi/django@5.1.14

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.14

url pkg:pypi/django@5.2.8

purl pkg:pypi/django@5.2.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-1g9h-ryet-2ffs

vulnerability	VCID-1mp4-kq35-1ba7

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8tz7-vjwz-rycs

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-h5qf-zbcz-qygg

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-m4mg-yd86-dyfw

vulnerability	VCID-n915-wj16-wka6

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-tvk1-4am9-f3cf

vulnerability	VCID-z7sj-r61n-qbcd

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.8

url pkg:pypi/django@6.0a1

purl pkg:pypi/django@6.0a1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-sbwy-buwj-gkd2

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@6.0a1

aliases BIT-django-2025-64458, CVE-2025-64458, GHSA-qw25-v68c-qjf3, PYSEC-2025-107

risk_score 4.0

exploitability 0.5

weighted_severity 8.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-xkrz-p214-hqhp

url VCID-ycc8-7k6j-4kbf

vulnerability_id VCID-ycc8-7k6j-4kbf

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48432.json

reference_id

reference_type

scores

value	5.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2025-48432.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2025-48432

reference_id

reference_type

scores

value	0.00411
scoring_system	epss
scoring_elements	0.61866
published_at	2026-06-11T12:55:00Z

value	0.00411
scoring_system	epss
scoring_elements	0.61967
published_at	2026-06-12T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14232

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-41164

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-43665

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-24680

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27351

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39329

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39330

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-39614

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41989

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41991

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-42005

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-45231

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-53907

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-56374

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-13372

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-26699

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-32873

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-48432

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-57833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59681

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-59682

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64459

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-64460

reference_url

https://docs.djangoproject.com/en/dev/releases/security

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/dev/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	6.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url	https://github.com/advisories/GHSA-7xr5-9hcq-chf9
reference_id
reference_type
scores
url	https://github.com/advisories/GHSA-7xr5-9hcq-chf9

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-47.yaml

reference_url

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2025-47.yaml

reference_url

https://nvd.nist.gov/vuln/detail/CVE-2025-48432

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2025-48432

reference_url

https://www.djangoproject.com/weblog/2025/jun/04/security-releases

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2025/jun/04/security-releases

reference_url

https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases

reference_url

http://www.openwall.com/lists/oss-security/2025/06/04/5

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2025/06/04/5

reference_url

http://www.openwall.com/lists/oss-security/2025/06/10/2

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2025/06/10/2

reference_url

http://www.openwall.com/lists/oss-security/2025/06/10/3

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2025/06/10/3

reference_url

http://www.openwall.com/lists/oss-security/2025/06/10/4

reference_id

reference_type

scores

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2025/06/10/4

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107282
reference_id	1107282
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1107282

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2370365
reference_id	2370365
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2370365

reference_url	https://security.archlinux.org/ASA-202506-6
reference_id	ASA-202506-6
reference_type
scores
url	https://security.archlinux.org/ASA-202506-6

reference_url

https://security.archlinux.org/AVG-2894

reference_id

AVG-2894

reference_type

scores

value	Low
scoring_system	archlinux
scoring_elements

url

https://security.archlinux.org/AVG-2894

reference_url

https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases/

reference_id

bugfix-releases

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T13:20:12Z/

url

https://www.djangoproject.com/weblog/2025/jun/10/bugfix-releases/

reference_url

reference_id

django-announce

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	4.0
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	MODERATE
scoring_system	generic_textual
scoring_elements

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T13:20:12Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url	https://access.redhat.com/errata/RHSA-2025:14686
reference_id	RHSA-2025:14686
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:14686

reference_url	https://access.redhat.com/errata/RHSA-2025:16487
reference_id	RHSA-2025:16487
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2025:16487

reference_url

reference_id

security

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T13:20:12Z/

url

https://docs.djangoproject.com/en/dev/releases/security/

reference_url

https://www.djangoproject.com/weblog/2025/jun/04/security-releases/

reference_id

security-releases

reference_type

scores

value	4
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N

value	Track
scoring_system	ssvc
scoring_elements	SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-05T13:20:12Z/

url

https://www.djangoproject.com/weblog/2025/jun/04/security-releases/

reference_url	https://usn.ubuntu.com/7555-1/
reference_id	USN-7555-1
reference_type
scores
url	https://usn.ubuntu.com/7555-1/

fixed_packages

url pkg:pypi/django@4.2.22

purl pkg:pypi/django@4.2.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.2.22

url pkg:pypi/django@5.1.10

purl pkg:pypi/django@5.1.10

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-xkrz-p214-hqhp

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.1.10

url pkg:pypi/django@5.2.2

purl pkg:pypi/django@5.2.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-13q1-fzeg-bfd9

vulnerability	VCID-1g9h-ryet-2ffs

vulnerability	VCID-1mp4-kq35-1ba7

vulnerability	VCID-4xtu-yeh2-pbc8

vulnerability	VCID-72z9-v49q-vbcc

vulnerability	VCID-81b9-uqyv-kkhm

vulnerability	VCID-8tz7-vjwz-rycs

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-dh5p-grha-r7a2

vulnerability	VCID-dqpz-q718-pkas

vulnerability	VCID-e331-cbgc-hubm

vulnerability	VCID-fwwm-7y13-y3dx

vulnerability	VCID-h5qf-zbcz-qygg

vulnerability	VCID-hb8n-gwz6-9yd9

vulnerability	VCID-jdjc-ygtk-c7hv

vulnerability	VCID-m4mg-yd86-dyfw

vulnerability	VCID-n915-wj16-wka6

vulnerability	VCID-pmhc-yu6r-uudy

vulnerability	VCID-pn2d-2euz-pudt

vulnerability	VCID-q3sw-jd7p-1yg1

vulnerability	VCID-r3dj-t213-jyhh

vulnerability	VCID-sbwy-buwj-gkd2

vulnerability	VCID-tvk1-4am9-f3cf

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-z7sj-r61n-qbcd

vulnerability	VCID-zr7g-1xkm-fqdw

vulnerability	VCID-zztc-4be5-fker

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@5.2.2

aliases BIT-django-2025-48432, CVE-2025-48432, GHSA-7xr5-9hcq-chf9, PYSEC-2025-47

risk_score 3.1

exploitability 0.5

weighted_severity 6.2

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ycc8-7k6j-4kbf

Fixing_vulnerabilities

url VCID-gtkn-prux-vbdb

vulnerability_id VCID-gtkn-prux-vbdb

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28346.json

reference_id

reference_type

scores

value	9.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28346.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-28346

reference_id

reference_type

scores

value	0.01971
scoring_system	epss
scoring_elements	0.83977
published_at	2026-06-12T12:55:00Z

value	0.01971
scoring_system	epss
scoring_elements	0.8392
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323

reference_url

https://docs.djangoproject.com/en/4.0/releases/security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/2044dac5c6968441be6f534c4139bcf48c5c7e48

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/2044dac5c6968441be6f534c4139bcf48c5c7e48

reference_url

https://github.com/django/django/commit/2c09e68ec911919360d5f8502cefc312f9e03c5d

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/2c09e68ec911919360d5f8502cefc312f9e03c5d

reference_url

https://github.com/django/django/commit/800828887a0509ad1162d6d407e94d8de7eafc60

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/800828887a0509ad1162d6d407e94d8de7eafc60

reference_url

https://github.com/django/django/commit/93cae5cb2f9a4ef1514cf1a41f714fef08005200

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/93cae5cb2f9a4ef1514cf1a41f714fef08005200

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-190.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-190.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.debian.org/debian-lts-announce/2022/04/msg00013.html

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.debian.org/debian-lts-announce/2022/04/msg00013.html

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

https://security.netapp.com/advisory/ntap-20220609-0002

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://security.netapp.com/advisory/ntap-20220609-0002

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/apr/11/security-releases

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/apr/11/security-releases

reference_url	https://www.djangoproject.com/weblog/2022/apr/11/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2022/apr/11/security-releases/

reference_url

http://www.openwall.com/lists/oss-security/2022/04/11/1

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2022/04/11/1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009677
reference_id	1009677
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009677

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2072447
reference_id	2072447
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2072447

reference_url	https://security.archlinux.org/ASA-202204-9
reference_id	ASA-202204-9
reference_type
scores
url	https://security.archlinux.org/ASA-202204-9

reference_url

reference_id

AVG-2667

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-28346

reference_url

reference_id

CVE-2022-28346

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://nvd.nist.gov/vuln/detail/CVE-2022-28346

reference_url

https://github.com/advisories/GHSA-2gwj-7jmv-h26r

reference_id

GHSA-2gwj-7jmv-h26r

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	CRITICAL
scoring_system	cvssv3.1_qr
scoring_elements

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/advisories/GHSA-2gwj-7jmv-h26r

reference_url	https://security.gentoo.org/glsa/202509-03
reference_id	GLSA-202509-03
reference_type
scores
url	https://security.gentoo.org/glsa/202509-03

reference_url	https://access.redhat.com/errata/RHSA-2022:5115
reference_id	RHSA-2022:5115
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5115

reference_url	https://access.redhat.com/errata/RHSA-2022:5498
reference_id	RHSA-2022:5498
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5498

reference_url	https://access.redhat.com/errata/RHSA-2022:5602
reference_id	RHSA-2022:5602
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5602

reference_url	https://access.redhat.com/errata/RHSA-2022:5702
reference_id	RHSA-2022:5702
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5702

reference_url	https://access.redhat.com/errata/RHSA-2022:5703
reference_id	RHSA-2022:5703
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:5703

reference_url	https://access.redhat.com/errata/RHSA-2022:8872
reference_id	RHSA-2022:8872
reference_type
scores
url	https://access.redhat.com/errata/RHSA-2022:8872

reference_url	https://usn.ubuntu.com/5373-1/
reference_id	USN-5373-1
reference_type
scores
url	https://usn.ubuntu.com/5373-1/

reference_url	https://usn.ubuntu.com/5373-2/
reference_id	USN-5373-2
reference_type
scores
url	https://usn.ubuntu.com/5373-2/

fixed_packages

url pkg:pypi/django@2.2.28

purl pkg:pypi/django@2.2.28

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-wpt2-535q-3yfe

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@2.2.28

url pkg:pypi/django@3.2.13

purl pkg:pypi/django@3.2.13

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-9ge1-u71f-rbaw

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-d2cw-526n-mbem

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fmpr-bhrf-17gm

vulnerability	VCID-j4rs-235r-dkfj

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-qsme-8a2n-23fs

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-ufv7-y5a7-fugg

vulnerability	VCID-wpt2-535q-3yfe

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@3.2.13

url pkg:pypi/django@4.0.4

purl pkg:pypi/django@4.0.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-19se-3ng9-c7bw

vulnerability	VCID-6tdg-t4nv-sbha

vulnerability	VCID-7spe-cayc-4qb4

vulnerability	VCID-beas-dwx6-1ffp

vulnerability	VCID-db6w-yj8t-sfg4

vulnerability	VCID-fmpr-bhrf-17gm

vulnerability	VCID-jspj-r34n-jubz

vulnerability	VCID-nhzy-7qdm-wbg8

vulnerability	VCID-tudc-7sgh-nkda

vulnerability	VCID-wpt2-535q-3yfe

vulnerability	VCID-xkrz-p214-hqhp

vulnerability	VCID-ycc8-7k6j-4kbf

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/django@4.0.4

aliases BIT-django-2022-28346, CVE-2022-28346, GHSA-2gwj-7jmv-h26r, PYSEC-2022-190

risk_score 4.5

exploitability 0.5

weighted_severity 9.0

resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-gtkn-prux-vbdb

url VCID-w3dy-chny-5fbc

vulnerability_id VCID-w3dy-chny-5fbc

summary

references

reference_url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28347.json

reference_id

reference_type

scores

value	9.4
scoring_system	cvssv3
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

url

https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2022-28347.json

reference_url

https://api.first.org/data/v1/epss?cve=CVE-2022-28347

reference_id

reference_type

scores

value	0.00748
scoring_system	epss
scoring_elements	0.73618
published_at	2026-06-12T12:55:00Z

value	0.00748
scoring_system	epss
scoring_elements	0.73544
published_at	2026-06-11T12:55:00Z

url

https://api.first.org/data/v1/epss?cve=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-22818

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-23833

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28346

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-28347

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34265

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36359

reference_url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323
reference_id
reference_type
scores
url	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41323

reference_url

https://docs.djangoproject.com/en/4.0/releases/security

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://docs.djangoproject.com/en/4.0/releases/security

reference_url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_id

reference_type

scores

value	7.3
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

url

https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/00b0fc50e1738c7174c495464a5ef069408a4402

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/00b0fc50e1738c7174c495464a5ef069408a4402

reference_url

https://github.com/django/django/commit/29a6c98b4c13af82064f993f0acc6e8fafa4d3f5

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/29a6c98b4c13af82064f993f0acc6e8fafa4d3f5

reference_url

https://github.com/django/django/commit/6723a26e59b0b5429a0c5873941e01a2e1bdbb81

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/6723a26e59b0b5429a0c5873941e01a2e1bdbb81

reference_url

https://github.com/django/django/commit/9e19accb6e0a00ba77d5a95a91675bf18877c72d

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/django/django/commit/9e19accb6e0a00ba77d5a95a91675bf18877c72d

reference_url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-191.yaml

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-191.yaml

reference_url

https://groups.google.com/forum/#!forum/django-announce

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://groups.google.com/forum/#!forum/django-announce

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK

reference_url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/apr/11/security-releases

reference_url

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

https://www.djangoproject.com/weblog/2022/apr/11/security-releases

reference_url	https://www.djangoproject.com/weblog/2022/apr/11/security-releases/
reference_id
reference_type
scores
url	https://www.djangoproject.com/weblog/2022/apr/11/security-releases/

reference_url

http://www.openwall.com/lists/oss-security/2022/04/11/1

reference_id

reference_type

scores

value	9.8
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

value	9.3
scoring_system	cvssv4
scoring_elements	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

value	CRITICAL
scoring_system	generic_textual
scoring_elements

url

http://www.openwall.com/lists/oss-security/2022/04/11/1

reference_url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009677
reference_id	1009677
reference_type
scores
url	https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1009677

reference_url	https://bugzilla.redhat.com/show_bug.cgi?id=2072459
reference_id	2072459
reference_type
scores
url	https://bugzilla.redhat.com/show_bug.cgi?id=2072459

reference_url	https://security.archlinux.org/ASA-202204-9
reference_id	ASA-202204-9
reference_type
scores
url	https://security.archlinux.org/ASA-202204-9

reference_url

reference_id

AVG-2667

reference_type

scores

value	High
scoring_system	archlinux
scoring_elements

url