Vulnerability CVE-2019-12308

Vulnerability Name:

CVE-2019-12308 (CCN-162046)

Assigned:

2019-06-03

Published:

2019-06-03

Updated:

2019-06-12

Summary:

An issue was discovered in Django 1.11 before 1.11.21, 2.1 before 2.1.9, and 2.2 before 2.2.2. The clickable Current URL value displayed by the AdminURLFieldWidget displays the provided value without validating it as a safe URL. Thus, an unvalidated value stored in the database, or a value provided as a URL query parameter payload, could result in an clickable JavaScript link.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:H/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-79

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2019-12308

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2019:1839

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2019:1872

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20190603 Django: CVE-2019-12308 AdminURLFieldWidget XSS (plus patched bundled jQuery for CVE-2019-11358)

Source: BID
Type: UNKNOWN
108559

Source: CONFIRM
Type: Vendor Advisory
https://docs.djangoproject.com/en/dev/releases/1.11.21/

Source: CONFIRM
Type: Vendor Advisory
https://docs.djangoproject.com/en/dev/releases/2.1.9/

Source: CONFIRM
Type: Vendor Advisory
https://docs.djangoproject.com/en/dev/releases/2.2.2/

Source: MISC
Type: Vendor Advisory
https://docs.djangoproject.com/en/dev/releases/security/

Source: XF
Type: UNKNOWN
django-cve201912308-xss(162046)

Source: MISC
Type: Mailing List, Vendor Advisory
https://groups.google.com/forum/#!topic/django-announce/GEbHU7YoVz8

Source: MLIST
Type: UNKNOWN
[debian-lts-announce] 20190605 [SECURITY] [DLA 1814-1] python-django security update

Source: MLIST
Type: UNKNOWN
[debian-lts-announce] 20190701 [SECURITY] [DLA 1842-1] python-django security update

Source: FEDORA
Type: UNKNOWN
FEDORA-2019-57a4324120

Source: BUGTRAQ
Type: UNKNOWN
20190708 [SECURITY] [DSA 4476-1] python-django security update

Source: CCN
Type: oss-sec Mailing List, Mon, 3 Jun 2019 13:21:10 +0200
Django: CVE-2019-12308 AdminURLFieldWidget XSS (plus patched bundled jQuery for CVE-2019-11358)

Source: GENTOO
Type: UNKNOWN
GLSA-202004-17

Source: UBUNTU
Type: UNKNOWN
USN-4043-1

Source: DEBIAN
Type: UNKNOWN
DSA-4476

Source: CCN
Type: Django Web site
Django makes it easier to build better Web apps more quickly and with less code.

Source: CONFIRM
Type: Vendor Advisory
https://www.djangoproject.com/weblog/2019/jun/03/security-releases/

Vulnerable Configuration:

Configuration 1:

cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 1.11 and < 1.11.21)

OR cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 2.1 and < 2.1.9)

OR cpe:/a:djangoproject:django:*:*:*:*:*:*:*:* (Version >= 2.2 and < 2.2.2)

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201912308	V	CVE-2019-12308	2022-06-30
oval:org.opensuse.security:def:113248	P	python36-Django-3.2.7-2.3 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:60504	P	Security update for the Linux Kernel (Important)	2022-01-13
oval:org.opensuse.security:def:59873	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:93433	P	(Important)	2021-12-06
oval:org.opensuse.security:def:59573	P	Security update for openssh (Important)	2021-12-02
oval:org.opensuse.security:def:60425	P	Security update for xen (Moderate)	2021-12-01
oval:org.opensuse.security:def:59818	P	Security update for binutils (Moderate)	2021-11-09
oval:org.opensuse.security:def:60384	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:106660	P	python36-Django-3.2.7-2.3 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:63234	P	rmt-server-1.2.2-1.15 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61680	P	xorg-x11-devel-7.6.1-1.16 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61679	P	xorg-x11-7.6_1-1.22 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61613	P	opie-32bit-2.4-1.96 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63240	P	squid-4.4-5.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61590	P	libvpx4-1.6.1-4.16 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63193	P	apache2-mod_apparmor-2.12.2-7.17.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61589	P	libvorbis-devel-1.3.6-4.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61619	P	patch-2.7.6-3.5 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61596	P	libxml2-2-2.9.7-3.6.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63236	P	salt-api-2019.2.0-4.4 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61595	P	libxkbcommon-devel-0.8.2-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61671	P	unzip-6.00-4.8.13 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63245	P	vsftpd-3.0.3-7.7.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61670	P	unixODBC-2.3.6-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:74308	P	Security update for libaom (Important)	2021-09-09
oval:org.opensuse.security:def:63508	P	pidgin-plugin-otr-4.0.2-1.61 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63424	P	java-11-openjdk-javadoc-11.0.7.0-3.42.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63379	P	subversion-server-1.10.6-3.15.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63419	P	binutils-gold-2.32-7.8.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63517	P	python3-avahi-0.7-3.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63433	P	liblcms2-2-32bit-2.9-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63474	P	gnome-photos-3.34.1-1.62 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63371	P	rsyslog-module-gssapi-8.39.0-4.10.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63332	P	gtk-vnc-devel-1.0.0-2.35 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63133	P	terraform-provider-helm-1.3.2-6.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63323	P	dhcp-relay-4.3.5-6.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63483	P	libgd3-32bit-2.2.5-9.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63380	P	swtpm-0.5.2-1.20 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63341	P	libmariadb-devel-3.1.12-3.25.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63412	P	apache-commons-beanutils-1.9.4-1.68 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63329	P	gnuplot-5.2.2-3.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63373	P	sblim-sfcb-1.4.9-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62344	P	unzip-6.00-4.8.13 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62148	P	libdmx-devel-1.1.3-1.23 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63038	P	perl-doc-5.26.1-15.87 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62249	P	libxslt-devel-1.1.32-3.8.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62055	P	cups-filters-1.25.0-1.107 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63044	P	subversion-bash-completion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62385	P	docker-libnetwork-0.7.0.1+gitr2908_55e924b8a842-4.31.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62255	P	libzstd-devel-1.4.4-1.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62061	P	dhcp-4.3.5-6.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63002	P	cups-ddk-2.2.7-3.26.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62335	P	systemd-bash-completion-234-24.82.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62139	P	libarchive-devel-3.4.2-2.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63011	P	gradle-4.4.1-1.87 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62853	P	git-2.16.3-1.30 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:60466	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:60288	P	Security update for mutt (Moderate)	2021-01-22
oval:org.opensuse.security:def:62476	P	libusbmuxd-devel-1.0.10-3.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63140	P	apache2-mod_apparmor-2.12-5.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61874	P	librrd8-1.7.0-4.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62908	P	nasm-2.13.02-1.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61703	P	axis-1.4-11.65 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62589	P	libxcb-render0-32bit-1.13-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62379	P	podman-1.8.0-4.20.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61782	P	libFS-devel-1.0.7-1.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63278	P	libosinfo-devel-1.7.1-1.52 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63146	P	davfs2-1.5.4-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63055	P	python2-numpy-gnu-hpc-1.16.5-1.164 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62914	P	pam-devel-32bit-1.3.0-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62574	P	libpcre2-posix2-10.31-1.14 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62595	P	perl-MIME-Charset-1.012.2-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62397	P	bubblewrap-0.2.0-1.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62374	P	buildah-1.7.1-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62373	P	podman-1.0.1-2.20 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61788	P	libXcursor-devel-1.1.15-1.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63406	P	apache2-mod_php7-7.4.6-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62681	P	libmicrohttpd-devel-0.9.57-1.33 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62467	P	libraptor-devel-2.0.15-1.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61865	P	libpng16-16-1.6.34-3.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61694	P	apache2-2.4.43-1.15 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63142	P	apache2-mod_nss-1.0.17-1.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62690	P	libout123-0-1.25.10-1.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63272	P	libecpg6-12.2-6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:59224	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:59202	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:60621	P	Security update for python-Django (Important)	2020-12-01
oval:org.opensuse.security:def:59201	P	Security update for wget (Important)	2020-12-01
oval:org.opensuse.security:def:74182	P	Security update for rubygem-actionpack-5_1 (Important)	2020-12-01
oval:org.opensuse.security:def:64242	P	dstat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64130	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:64088	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:63986	P	Security update for e2fsprogs (Moderate)	2020-12-01
oval:org.opensuse.security:def:63880	P	Security update for openwsman (Important)	2020-12-01
oval:org.opensuse.security:def:63746	P	Security update for cronie (Low)	2020-12-01
oval:org.opensuse.security:def:60882	P	Security update for python-Django (Important)	2020-12-01
oval:org.opensuse.security:def:60803	P	Security update for bluez (Important)	2020-12-01
oval:org.opensuse.security:def:60593	P	Security update for ardana-monasca, ardana-spark, kafka, kafka-kit, openstack-monasca-api (Important)	2020-12-01
oval:org.opensuse.security:def:60172	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:59688	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:59392	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:60853	P	Security update for python-Django (Moderate)	2020-12-01
oval:org.opensuse.security:def:59140	P	Security update for LibVNCServer (Critical)	2020-12-01
oval:org.opensuse.security:def:60762	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:58984	P	Security update for the Linux Kernel (Live Patch 14 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60724	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:58962	P	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60640	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:58961	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:60543	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60125	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:59936	P	Security update for postgresql96 (Important)	2020-12-01
oval:org.opensuse.security:def:59635	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:59382	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:88288	P	Security update for python-Django1 (Important)	2019-09-09
oval:org.opensuse.security:def:87985	P	Security update for python-Django1 (Important)	2019-09-09
oval:org.opensuse.security:def:84335	P	Security update for python-Django (Important)	2019-09-02
oval:org.opensuse.security:def:83887	P	Security update for python-Django (Important)	2019-09-02
oval:org.opensuse.security:def:100146	P	Security update for python-Django (Moderate)	2019-08-14
oval:org.opensuse.security:def:109932	P	Security update for python-Django (Moderate)	2019-08-08
oval:org.opensuse.security:def:87979	P	Security update for python-Django1 (Moderate)	2019-08-01
oval:org.opensuse.security:def:88279	P	Security update for python-Django1 (Moderate)	2019-08-01
oval:com.ubuntu.cosmic:def:2019123080000000	V	CVE-2019-12308 on Ubuntu 18.10 (cosmic) - low.	2019-06-03
oval:com.ubuntu.bionic:def:2019123080000000	V	CVE-2019-12308 on Ubuntu 18.04 LTS (bionic) - low.	2019-06-03
oval:com.ubuntu.xenial:def:2019123080000000	V	CVE-2019-12308 on Ubuntu 16.04 LTS (xenial) - low.	2019-06-03
oval:com.ubuntu.disco:def:2019123080000000	V	CVE-2019-12308 on Ubuntu 19.04 (disco) - low.	2019-06-03

BACK