BIT-django-2022-28346

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/django/BIT-django-2022-28346.json

JSON Data

https://api.osv.dev/v1/vulns/BIT-django-2022-28346

Aliases

CVE-2022-28346
GHSA-2gwj-7jmv-h26r
PYSEC-2022-190

Published

2024-03-06T10:53:06.178Z

Modified

2024-03-06T11:25:28.861Z

Summary

[none]

Details

An issue was discovered in Django 2.2 before 2.2.28, 3.2 before 3.2.13, and 4.0 before 4.0.4. QuerySet.annotate(), aggregate(), and extra() methods are subject to SQL injection in column aliases via a crafted dictionary (with dictionary expansion) as the passed **kwargs.

References

http://www.openwall.com/lists/oss-security/2022/04/11/1
https://docs.djangoproject.com/en/4.0/releases/security/
https://groups.google.com/forum/#%21forum/django-announce
https://lists.debian.org/debian-lts-announce/2022/04/msg00013.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HWY6DQWRVBALV73BPUVBXC3QIYUM24IK/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LTZVAKU5ALQWOKFTPISE257VCVIYGFQI/
https://security.netapp.com/advisory/ntap-20220609-0002/
https://www.debian.org/security/2022/dsa-5254
https://www.djangoproject.com/weblog/2022/apr/11/security-releases/

Affected packages

Bitnami / django

Package

Name: django
Purl: pkg:bitnami/django

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

2.2.0

Fixed

2.2.28

Introduced

3.2.0

Fixed

3.2.13

Introduced

4.0.0

Fixed

4.0.4