VDB
WID-SEC-W-2025-2717
WID-SEC-W-2025-2717
PUBLISHED
CVSS 8.699999809265137 HIGH
Django ist ein in Python geschriebenes serverseitiges Web-Framework, das einem Model-View-Presenter-Schema folgt.
Risk Scores
CVSS 4.0
8.699999809265137
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux | ||
| Ubuntu Linux | ||
| Open Source Django <5.1.15 | ||
| Open Source Django <4.2.27 | ||
| Open Source Django 4.2.27 | ||
| Open Source Django 5.2.9 | ||
| SUSE Linux | ||
| Open Source Django 5.1.15 | ||
| Debian Linux | ||
| Fedora Linux | ||
| SUSE openSUSE | ||
| Open Source Django <5.2.9 |
Exploit Intelligence
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2717.json (circl)
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2717 (circl)
- https://www.djangoproject.com/weblog/2025/dec/02/security-releases/ (circl)
- https://ubuntu.com/security/notices/USN-7903-1 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-b1379d950d (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-c08e0795c0 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-f43c018f46 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-45ee190318 (circl)
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-24dfd3b072 (circl)
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5VE6F5VEPJWFH73OWN3SH3BDOIVULKWS/ (circl)
…and 14 more exploits
Timeline
- Dec 2, 2025 CVE Published
- Feb 15, 2026 CVE Updated
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
- Apr 29, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2717.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2717 advisory
- https://www.djangoproject.com/weblog/2025/dec/02/security-releases/ url
- https://ubuntu.com/security/notices/USN-7903-1 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-b1379d950d url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-c08e0795c0 url
- https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-f43c018f46 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-45ee190318 url
- https://bodhi.fedoraproject.org/updates/FEDORA-2025-24dfd3b072 url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/5VE6F5VEPJWFH73OWN3SH3BDOIVULKWS/ url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/2GK7CDYAUD6NNTNGXOGPHI7XFGAQRZZB/ url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NPP46EMICDLOI2JMRBNIEUVJTKHXYW6U/ url
- https://lists.debian.org/debian-lts-announce/2025/12/msg00036.html url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Q2P2OLHVQPGSXDJWCLPISPE3TAXPLR5K/ url
- https://access.redhat.com/errata/RHSA-2026:0414 url
- https://access.redhat.com/errata/RHSA-2026:1249 url
- https://access.redhat.com/errata/RHSA-2026:1497 url
- https://access.redhat.com/errata/RHSA-2026:1506 url
- https://access.redhat.com/errata/RHSA-2026:1609 url
- https://lists.debian.org/debian-security-announce/2026/msg00026.html url
…and 1 more