CVE-2024-41989 | Django up to 4.2.14/5.0.7 Template Filter django.utils.numberformat.floatformat memory allocation

Posted by Angelo Barbosa | Aug 7, 2024 | CVE

A vulnerability classified as problematic has been found in Django up to 4.2.14/5.0.7. Affected is the function django.utils.numberformat.floatformat of the component Template Filter. The manipulation leads to uncontrolled memory allocation.

This vulnerability is traded as CVE-2024-41989. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41989 | Django up to 4.2.14/5.0.7 Template Filter django.utils.numberformat.floatformat memory allocation

Related Posts

CVE-2024-43797 | advplyr audiobookshelf up to 2.12.x Role-Based Access Control path traversal

CVE-2024-32689 | GenialSouls WP Social Comments Plugin up to 1.7.3 on WordPress authorization

CVE-2024-5299 | D-Link D-View 2.0.1.28 execMonitorScript routine (ZDI-24-450)

CVE-2023-52286 | Tencent tdsqlpcloud up to 1.8.5 get_db_info information disclosure