SB2019120805 - Privilege escalation in Django
Published: December 8, 2019
Security Bulletin ID
SB2019120805
Severity
Medium
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Remote access
Highest impact
Data manipulation
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Improper Privilege Management (CVE-ID: CVE-2019-19118)
The vulnerability allows a remote user to escalate privileges within the application.
The vulnerability exists due to incorrect privilege management when processing the save() method in "/django/contrib/admin/options.py". A remote authenticated user can assign elevated privileges to his or her account by manipulating form elements.
Remediation
Install update from vendor's website.
References
- http://www.openwall.com/lists/oss-security/2019/12/02/1
- https://docs.djangoproject.com/en/dev/releases/security/
- https://groups.google.com/forum/#!topic/django-announce/GjGqDvtNmWQ
- https://www.djangoproject.com/weblog/2019/dec/02/security-releases/
- https://github.com/django/django/commit/11c5e0609bcc0db93809de2a08e0dc3d70b393e4