CVE-2014-0474
critical
CVSS v3
—
CVSS v2
10.0
VIR risk
10.0
Description
The (1) FilePathField, (2) GenericIPAddressField, and (3) IPAddressField model field classes in Django before 1.4.11, 1.5.x before 1.5.6, 1.6.x before 1.6.3, and 1.7.x before 1.7 beta 2 do not properly perform type conversion, which allows remote attackers to have unspecified impact and vectors, related to "MySQL typecasting."
Predictions
Exploit likelihood
30%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2014-0474
Vendor advisory: security@debian.org — https://www.djangoproject.com/weblog/2014/apr/21/security/
OS impact
| OS | Version | Status | Fixed in |
|---|---|---|---|
| ubuntu | 10.04 | affected | |
| ubuntu | 12.04 | affected | |
| ubuntu | 12.10 | affected | |
| ubuntu | 13.10 | affected | |
| ubuntu | 14.04 | affected | |
| debian | bookworm | fixed | 1.6.3-1 |
| debian | bullseye | fixed | 1.6.3-1 |
| debian | forky | fixed | 1.6.3-1 |
| debian | sid | fixed | 1.6.3-1 |
| debian | trixie | fixed | 1.6.3-1 |
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| djangoproject | django | 1.6 | |
| djangoproject | django | 1.6.1 | |
| djangoproject | django | 1.6.2 | |
| djangoproject | django | {"endIncluding":"1.4.10"} | |
| djangoproject | django | 1.4 | |
| djangoproject | django | 1.4.1 | |
| djangoproject | django | 1.4.2 | |
| djangoproject | django | 1.4.3 | |
| djangoproject | django | 1.4.4 | |
| djangoproject | django | 1.4.5 | |
| djangoproject | django | 1.4.6 | |
| djangoproject | django | 1.4.7 | |
| djangoproject | django | 1.4.8 | |
| djangoproject | django | 1.4.9 | |
| djangoproject | django | 1.7 | |
| djangoproject | django | 1.5 | |
| djangoproject | django | 1.5.1 | |
| djangoproject | django | 1.5.2 | |
| djangoproject | django | 1.5.3 | |
| djangoproject | django | 1.5.4 | |
| djangoproject | django | 1.5.5 | |
References
- http://lists.opensuse.org/opensuse-updates/2014-09/msg00023.html
- http://rhn.redhat.com/errata/RHSA-2014-0456.html
- http://rhn.redhat.com/errata/RHSA-2014-0457.html
- http://secunia.com/advisories/61281
- http://www.debian.org/security/2014/dsa-2934
- http://www.ubuntu.com/usn/USN-2169-1
- https://www.djangoproject.com/weblog/2014/apr/21/security/
- https://nvd.nist.gov/vuln/detail/CVE-2014-0474
- https://github.com/django/django/commit/5f0829a27e85d89ad8c433f5c6a7a7d17c9e9292
- https://github.com/django/django/commit/985434fb1d6bf2335bf96c6ebf91c3674f1f399f
- https://github.com/django/django/commit/aa80f498de6d687e613860933ac58433ab71ea4b
- https://github.com/django/django
- https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2014-3.yaml
- https://www.djangoproject.com/weblog/2014/apr/21/security
- https://security-tracker.debian.org/tracker/CVE-2014-0474
CWEs
CWE-399
Verify integrity in audit chain (admin only). AS-IS.