CVE-2024-38875

HIGH Year: 2024
CVSS v3 Score
7.5
High
Weakness Type
CWE-130
View all →

Vulnerability Description

An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urlizetrunc were subject to a potential denial of service attack via certain inputs with a very large number of brackets.

Related Vulnerabilities

CVE-2018-5453

HIGH
CVSS:7.5(High)

An Improper Handling of Length Parameter Inconsistency issue was discovered in Moxa OnCell G3100-HSPA Series version 1.4 Build 16062919 and prior. An attacker may be able to edit the element of an HTT...

CWE-1302018

CVE-2019-0055

HIGH
CVSS:7.5(High)

A vulnerability in the SIP ALG packet processing service of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) to the device by sending specific types of valid SIP traffic...

CWE-1302019

CVE-2021-20610

HIGH
CVSS:7.5(High)

Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SF...

CWE-1302021

CVE-2021-3454

HIGH
CVSS:7.5(High)

Truncated L2CAP K-frame causes assertion failure. Zephyr versions >= 2.4.0, >= v.2.50 contain Improper Handling of Length Parameter Inconsistency (CWE-130), Reachable Assertion (CWE-617). For more inf...

CWE-1302021

CVE-2021-35516

HIGH
CVSS:7.5(High)

When reading a specially crafted 7Z archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mou...

CWE-1302021

CVE-2021-35517

HIGH
CVSS:7.5(High)

When reading a specially crafted TAR archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mo...

CWE-1302021