CVE-2012-3443 in djangoinfo

Summary

The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation, which allows remote attackers to cause a denial of service (memory consumption) by uploading an image file.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

06/14/2012

Disclosure

07/31/2012

Moderation

VulDB entry created

Entries

VDB-61458 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.01382

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3443
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3443
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3443/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!