CVE-2024-45230 — Vulnetix

Try Vulnetix Request Demo

CVE-2024-45230 PUBLISHED

An issue was discovered in Django 5.1 before 5.1.1, 5.0 before 5.0.9, and 4.2 before 4.2.16. The urlize() and urlizetrunc() template filters are subject to a potential denial-of-service attack via very large inputs with a specific sequence of characters.

EPSS 2.72% · 85.8th percentile

Risk Scores

EPSS Score

2.72%

85.8th percentile

Affected Products

Vendor	Product	Versions
Bitnami	django	5.1.0, 5.1.0, 4.2.0
Bitnami	django	5.0.0, 5.1.0, 4.2.0

Timeline

CVE Published
Oct 9, 2024 EPSS Score
Oct 14, 2024 Coalition ESS Score
Oct 19, 2024 Coalition ESS Score
Oct 27, 2024 EPSS Score
Oct 30, 2024 Coalition ESS Score
Dec 4, 2024 EPSS Score
Dec 22, 2024 EPSS Score
Jan 28, 2025 EPSS Score
Feb 5, 2025 PoC Published
Feb 15, 2025 EPSS Score
Mar 5, 2025 EPSS Score

References

Open in Interactive Console →