CVE-2012-3443 in djangoinfo

Zusammenfassung

von MITRE

The django.forms.ImageField class in the form system in Django before 1.3.2 and 1.4.x before 1.4.1 completely decompresses image data during image validation, which allows remote attackers to cause a denial of service (memory consumption) by uploading an image file.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

14.06.2012

Veröffentlichung

31.07.2012

Moderieren

akzeptiert

Eintrag

VDB-61458

CPE

bereit

CWE

CWE-20 (bestätigt)

CVSS

5.0 (NVD)

EPSS

0.01382

KEV

nein

Aktivitäten

very low

Sektor

Agriculture, Hostingprovider, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3443
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3443
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3443/

◂ Zurück Übersicht Weiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!