First published: Tue Sep 01 2020(Updated: )
It was discovered that Django, when used with Python 3.7 or higher, incorrectly handled directory permissions. A local attacker could possibly use this issue to obtain sensitive information, or escalate permissions.
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
ubuntu/python3-django | <2:2.2.12-1ubuntu0.2 | 2:2.2.12-1ubuntu0.2 |
=20.04 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-24583.
The severity of CVE-2020-24583 is not specified in the provided information.
CVE-2020-24583 affects Django when used with Python 3.7 or higher by mishandling directory permissions.
The recommended version of python3-django to fix CVE-2020-24583 is 2.2.12-1ubuntu0.2.
You can find more information about CVE-2020-24583 at the following URL: https://ubuntu.com/security/CVE-2020-24583