nvd-json-data-feeds/CVE-2023/CVE-2023-466xx/CVE-2023-46695.json

{
  "id": "CVE-2023-46695",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2023-11-02T06:15:08.000",
  "lastModified": "2023-11-07T04:21:57.467",
  "vulnStatus": "Undergoing Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters."
    },
    {
      "lang": "es",
      "value": "Se descubri\u00f3 un problema en Django 3.2 anterior a 3.2.23, 4.1 anterior a 4.1.13 y 4.2 anterior a 4.2.7. La normalizaci\u00f3n de NFKC es lenta en Windows. Como consecuencia, django.contrib.auth.forms.UsernameField est\u00e1 sujeto a un potencial ataque DoS (denegaci\u00f3n de servicio) a trav\u00e9s de ciertas entradas con una gran cantidad de caracteres Unicode."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://docs.djangoproject.com/en/4.2/releases/security/",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://groups.google.com/forum/#%21forum/django-announce",
      "source": "cve@mitre.org"
    },
    {
      "url": "https://www.djangoproject.com/weblog/2023/nov/01/security-releases/",
      "source": "cve@mitre.org"
    }
  ]
}
Auto-Update: 2023-11-02T07:00:19.249451+00:00 2023-11-02 07:00:22 +00:00			`{`
			`"id": "CVE-2023-46695",`
			`"sourceIdentifier": "cve@mitre.org",`
			`"published": "2023-11-02T06:15:08.000",`
Auto-Update: 2023-11-07T21:02:52.274489+00:00 2023-11-07 21:03:21 +00:00			`"lastModified": "2023-11-07T04:21:57.467",`
			`"vulnStatus": "Undergoing Analysis",`
Auto-Update: 2023-11-02T07:00:19.249451+00:00 2023-11-02 07:00:22 +00:00			`"descriptions": [`
			`{`
			`"lang": "en",`
			`"value": "An issue was discovered in Django 3.2 before 3.2.23, 4.1 before 4.1.13, and 4.2 before 4.2.7. The NFKC normalization is slow on Windows. As a consequence, django.contrib.auth.forms.UsernameField is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters."`
Auto-Update: 2023-11-07T21:02:52.274489+00:00 2023-11-07 21:03:21 +00:00			`},`
			`{`
			`"lang": "es",`
			`"value": "Se descubri\u00f3 un problema en Django 3.2 anterior a 3.2.23, 4.1 anterior a 4.1.13 y 4.2 anterior a 4.2.7. La normalizaci\u00f3n de NFKC es lenta en Windows. Como consecuencia, django.contrib.auth.forms.UsernameField est\u00e1 sujeto a un potencial ataque DoS (denegaci\u00f3n de servicio) a trav\u00e9s de ciertas entradas con una gran cantidad de caracteres Unicode."`
Auto-Update: 2023-11-02T07:00:19.249451+00:00 2023-11-02 07:00:22 +00:00			`}`
			`],`
			`"metrics": {},`
			`"references": [`
			`{`
			`"url": "https://docs.djangoproject.com/en/4.2/releases/security/",`
			`"source": "cve@mitre.org"`
			`},`
			`{`
Auto-Update: 2023-11-07T21:02:52.274489+00:00 2023-11-07 21:03:21 +00:00			`"url": "https://groups.google.com/forum/#%21forum/django-announce",`
Auto-Update: 2023-11-02T07:00:19.249451+00:00 2023-11-02 07:00:22 +00:00			`"source": "cve@mitre.org"`
			`},`
			`{`
			`"url": "https://www.djangoproject.com/weblog/2023/nov/01/security-releases/",`
			`"source": "cve@mitre.org"`
			`}`
			`]`
			`}`