CVE-2021-31542
published 2021-05-05CVE-2021-31542: In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded…
PriorityP348high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
EPSS
5.29%
91.6th percentile
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | python-django | < python-django 2:2.2.21-1 (bookworm) | python-django 2:2.2.21-1 (bookworm) |
| djangoproject | django | >= 2.2 < 2.2.21 | 2.2.21 |
| djangoproject | django | >= 2.2 < 2.2.21 | 2.2.21 |
| djangoproject | django | >= 3.0 < 3.1.9 | 3.1.9 |
| djangoproject | django | >= 3.1 < 3.1.9 | 3.1.9 |
| djangoproject | django | >= 3.2 < 3.2.1 | 3.2.1 |
| djangoproject | django | >= 3.2 < 3.2.1 | 3.2.1 |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv7.5HIGH
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
Django vulnerability
vendor_ubuntu·2021-05-13
CVE-2021-31542 Django vulnerability
Title: Django vulnerability
Summary: Django could be made to overwrite files.
USN-4932-1 fixed a vulnerability in Django. This update provides
the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM.
Original advisory details:
It was discovered that Django incorrectly handled certain
filenames. A remote attacker could possibly use this issue to create or
overwrite files in unexpected directories.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
django: Potential directory-traversal via uploaded files
vendor_redhat·2021-05-04·CVSS 7.5
CVE-2021-31542 [HIGH] CWE-22 django: Potential directory-traversal via uploaded files
django: Potential directory-traversal via uploaded files
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
A flaw was found in Django. `MultiPartParser`, `UploadedFile`, and `FieldFile` allowed directory-traversal via uploaded files with suitably crafted file names. The highest threat from this vulnerability is to data confidentiality.
Statement: Red Hat Update Infrastructure is in the maintenance phase and we will not be fixing Medium/Low impact security bugs. Reference: https://access.redhat.com/support/policy/updates/rhui
Mitigation: Mitigation for this issue is either not available or the currently available options do not meet the Red Hat
Ubuntu
Django vulnerability
vendor_ubuntu·2021-05-04
CVE-2021-31542 Django vulnerability
Title: Django vulnerability
Summary: Django could be made to overwrite files.
It was discovered that Django incorrectly handled certain
filenames. A remote attacker could possibly use this issue to create or
overwrite files in unexpected directories.
Instructions: In general, a standard system update will make all the necessary changes.
Debian
CVE-2021-31542: python-django - In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartPa...
vendor_debian·2021·CVSS 7.5
CVE-2021-31542 [HIGH] CVE-2021-31542: python-django - In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartPa...
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
Scope: local
bookworm: resolved (fixed in 2:2.2.21-1)
bullseye: resolved (fixed in 2:2.2.21-1)
forky: resolved (fixed in 2:2.2.21-1)
sid: resolved (fixed in 2:2.2.21-1)
trixie: resolved (fixed in 2:2.2.21-1)
OSV
Path Traversal in Django
osv·2021-06-04
CVE-2021-31542 [HIGH] Path Traversal in Django
Path Traversal in Django
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
GHSA
Path Traversal in Django
ghsa·2021-06-04
CVE-2021-31542 [HIGH] CWE-22 Path Traversal in Django
Path Traversal in Django
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
OSV
CVE-2021-31542: In Django 2
osv·2021-05-05·CVSS 7.5
CVE-2021-31542 [HIGH] CVE-2021-31542: In Django 2
In Django 2.2 before 2.2.21, 3.1 before 3.1.9, and 3.2 before 3.2.1, MultiPartParser, UploadedFile, and FieldFile allowed directory traversal via uploaded files with suitably crafted file names.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2021/05/04/3https://docs.djangoproject.com/en/3.2/releases/security/https://github.com/django/django/commit/04ac1624bdc2fa737188401757cf95ced122d26dhttps://github.com/django/django/commit/25d84d64122c15050a0ee739e859f22ddab5ac48https://github.com/django/django/commit/c98f446c188596d4ba6de71d1b77b4a6c5c2a007https://groups.google.com/forum/#%21forum/django-announcehttps://lists.debian.org/debian-lts-announce/2021/05/msg00005.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVKYPHR3TKR2ESWXBPOJEKRO2OSJRZUE/https://security.netapp.com/advisory/ntap-20210618-0001/https://www.djangoproject.com/weblog/2021/may/04/security-releases/http://www.openwall.com/lists/oss-security/2021/05/04/3https://docs.djangoproject.com/en/3.2/releases/security/https://github.com/django/django/commit/04ac1624bdc2fa737188401757cf95ced122d26dhttps://github.com/django/django/commit/25d84d64122c15050a0ee739e859f22ddab5ac48https://github.com/django/django/commit/c98f446c188596d4ba6de71d1b77b4a6c5c2a007https://groups.google.com/forum/#%21forum/django-announcehttps://lists.debian.org/debian-lts-announce/2021/05/msg00005.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZVKYPHR3TKR2ESWXBPOJEKRO2OSJRZUE/https://security.netapp.com/advisory/ntap-20210618-0001/https://www.djangoproject.com/weblog/2021/may/04/security-releases/
2021-05-05
Published