Detections
Analytics

Python Library Django 4.2.x < 4.2.16 / 5.0.x < 5.0.9 / 5.1.x < 5.1.1 Multiple Vulnerabilities

medium Nessus Plugin ID 206676

Language:

Version 1.9

Feb 28, 2025, 9:08 PM

  • Detection (improved regex to isolate managed packages)

Plugin Feed: 202502282108

Version 1.8

Dec 13, 2024, 12:03 PM

  • IAVM reference

Plugin Feed: 202412131203

Version 1.7

Nov 12, 2024, 12:45 PM

  • Detection (Enumerated Python packages are now checked for parent OS package. If found, detection only continues with paranoia.)

Plugin Feed: 202411121245

Version 1.6

Oct 23, 2024, 10:51 PM

  • Plugin categorization (add support for Linux Agents)

Plugin Feed: 202410232251

Version 1.5

Oct 21, 2024, 9:27 AM

  • CVSS metrics ("CVSSv2 score" set to 5.0)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N")
  • CVSS metrics ("CVSSv3 score" set to 5.3)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N")
  • CVSSv2 score source (changed from "CVE-2024-45230" to "CVE-2024-45231")
  • CVSSv2 severity (based on CVE-2024-45231, severity decreased from "High" to "Medium")
  • CVSSv3 severity (based on None, severity decreased from "High" to "Medium")

Plugin Feed: 202410210927

Version 1.4

Oct 7, 2024, 1:27 PM

  • Plugin categorization (adding new 'component' to component plugins)

Plugin Feed: 202410071327

Version 1.3

Sep 6, 2024, 1:30 PM

  • IAVM reference
  • STIG Severity

Plugin Feed: 202409061330

Version 1.2

Sep 6, 2024, 7:44 AM

  • Exploit attributes ("Exploitability ease" set to "No known exploits are available")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:U/RL:O/RC:C")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:U/RL:OF/RC:C")
  • Exploit attributes ("Exploit available" set to "False")

Plugin Feed: 202409060744

Version 1.1

Sep 5, 2024, 11:06 PM

  • New

Plugin Feed: 202409052306

* Changelogs are generally available for changes made after Nov 1, 2022