#VU59181 Path traversal in Django - CVE-2021-45452


Vulnerability identifier: #VU59181

Vulnerability risk: Low

CVSSv4.0: 0.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2021-45452

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Django
Web applications / CMS

Vendor: Django Software Foundation

Description

The vulnerability allows a remote user to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in the Storage.save() method. A remote user can pass a specially crafted HTTP filename to the application and write the file outside of the intended directory.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Django: 2.0 - 2.2.25, 3.0 - 3.2.10, 4.0

External links
https://www.djangoproject.com/weblog/2022/jan/04/security-releases/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


openEuler 22.03 LTS update for python-django
Ubuntu update for python-django
openEuler update for python-django
Fedora 35 update for python-django
Fedora 36 update for python-django
SUSE update for python-Django
SUSE update for python-Django1
SUSE update for python-Django
Multiple vulnerabilities in Django