CVE-2016-2512

Published on: 04/08/2016 12:00:00 AM UTC

Last Modified on: 03/23/2021 11:27:14 PM UTC

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

Certain versions of Django from Djangoproject contain the following vulnerability:

The utils.http.is_safe_url function in Django before 1.8.10 and 1.9.x before 1.9.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks or possibly conduct cross-site scripting (XSS) attacks via a URL containing basic authentication, as demonstrated by http://mysite.example.com\@attacker.com.

  • CVE-2016-2512 has been assigned by [email protected] to track the vulnerability - currently rated as HIGH severity.

CVSS3 Score: 7.4 - HIGH

Attack
Vector
Attack
Complexity
Privileges
Required
User
Interaction
NETWORK LOW NONE REQUIRED
Scope Confidentiality
Impact
Integrity
Impact
Availability
Impact
CHANGED NONE HIGH NONE

CVSS2 Score: 4.3 - MEDIUM

Access
Vector
Access
Complexity
Authentication
NETWORK MEDIUM NONE
Confidentiality
Impact
Integrity
Impact
Availability
Impact
NONE PARTIAL NONE

CVE References

Description Tags Link
Oracle Solaris Bulletin - April 2016 www.oracle.com
text/html
URL Logo CONFIRM www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
Debian -- Security Information -- DSA-3544-1 python-django www.debian.org
Depreciated Link
text/html
URL Logo DEBIAN DSA-3544
Django CVE-2016-2512 Cross Site Scripting Vulnerability cve.report (archive)
text/html
URL Logo BID 83879
USN-2915-2: Django regression | Ubuntu www.ubuntu.com
text/html
URL Logo UBUNTU USN-2915-2
Red Hat Customer Portal web.archive.org
text/html
Inactive LinkNot Archived
URL Logo REDHAT RHSA-2016:0502
Red Hat Customer Portal web.archive.org
text/html
Inactive LinkNot Archived
URL Logo REDHAT RHSA-2016:0505
Django security releases issued: 1.9.3 and 1.8.10 | Weblog | Django Vendor Advisory
www.djangoproject.com
text/html
URL Logo CONFIRM www.djangoproject.com/weblog/2016/mar/01/security-releases/
Red Hat Customer Portal web.archive.org
text/html
Inactive LinkNot Archived
URL Logo REDHAT RHSA-2016:0506
USN-2915-1: Django vulnerabilities | Ubuntu www.ubuntu.com
text/html
URL Logo UBUNTU USN-2915-1
Django Bugs Let Remote Users Conduct Redirect and Cross-Site Scripting Attacks and Determine Valid Usernames - SecurityTracker www.securitytracker.com
text/html
URL Logo SECTRACK 1035152
USN-2915-3: Django regression | Ubuntu www.ubuntu.com
text/html
URL Logo UBUNTU USN-2915-3
Red Hat Customer Portal web.archive.org
text/html
Inactive LinkNot Archived
URL Logo REDHAT RHSA-2016:0504
Fixed CVE-2016-2512 -- Prevented spoofing is_safe_url() with basic auth. · django/[email protected] · GitHub github.com
text/html
URL Logo CONFIRM github.com/django/django/commit/c5544d289233f501917e25970c03ed444abbd4f0

Known Affected Configurations (CPE V2.3)

Type Vendor Product Version Update Edition Language
ApplicationDjangoprojectDjango1.8.9AllAllAll
ApplicationDjangoprojectDjango1.9AllAllAll
ApplicationDjangoprojectDjango1.9.1AllAllAll
ApplicationDjangoprojectDjango1.9.2AllAllAll
ApplicationDjangoprojectDjango1.8.9AllAllAll
ApplicationDjangoprojectDjango1.9AllAllAll
ApplicationDjangoprojectDjango1.9.1AllAllAll
ApplicationDjangoprojectDjango1.9.2AllAllAll
  • cpe:2.3:a:djangoproject:django:1.8.9:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9.1:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9.2:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.8.9:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9.1:*:*:*:*:*:*:*:
  • cpe:2.3:a:djangoproject:django:1.9.2:*:*:*:*:*:*:*: