CVE-2024-38875

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-38875

CGA ID

CGA-j4j8-9c7h-cq88

Severity

7.5

High

CVSS V3

Summary

Django vulnerable to Denial of Service

Description

An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urlizetrunc were subject to a potential denial of service attack via certain inputs with a very large number of brackets.

References

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

Safe Source for Open Source™

Media Kit Contact Us

Private Policy

CVE-2024-38875

Severity

Summary

Description

References

Affected packages

Product

Why Chainguard

Customers

Company

Resources