FreeBSD : Django -- multiple vulnerabilities (4e3fa78b-1577-11ea-b66e-080027bdabe8)

medium Nessus Plugin ID 131470

Synopsis

The remote FreeBSD host is missing one or more security-related updates.

Description

Django release reports :

CVE-2019-19118: Privilege escalation in the Django admin.

Since Django 2.1, a Django model admin displaying a parent model with related model inlines, where the user has view-only permissions to a parent model but edit permissions to the inline model, would display a read-only view of the parent model but editable forms for the inline.

Submitting these forms would not allow direct edits to the parent model, but would trigger the parent model's save() method, and cause pre and post-save signal handlers to be invoked. This is a privilege escalation as a user who lacks permission to edit a model should not be able to trigger its save-related signals.

Solution

Update the affected packages.

See Also

https://www.djangoproject.com/weblog/2019/dec/02/security-releases/

http://www.nessus.org/u?f89d4aee

Plugin Details

Severity: Medium

ID: 131470

File Name: freebsd_pkg_4e3fa78b157711eab66e080027bdabe8.nasl

Version: 1.5

Type: local

Published: 12/3/2019

Updated: 2/4/2020

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 4

Temporal Score: 3

Vector: CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N

CVSS Score Source: CVE-2019-19118

CVSS v3

Risk Factor: Medium

Base Score: 6.5

Temporal Score: 5.7

Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:py35-django21, p-cpe:/a:freebsd:freebsd:py35-django22, p-cpe:/a:freebsd:freebsd:py36-django21, p-cpe:/a:freebsd:freebsd:py36-django22, p-cpe:/a:freebsd:freebsd:py37-django21, p-cpe:/a:freebsd:freebsd:py37-django22, p-cpe:/a:freebsd:freebsd:py38-django21, p-cpe:/a:freebsd:freebsd:py38-django22, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Exploit Ease: No known exploits are available

Patch Publication Date: 12/3/2019

Vulnerability Publication Date: 11/25/2019

Reference Information

CVE: CVE-2019-19118