Skip to main content

Django Basic Auth Ip Whitelist

1 CVEs product

Monthly

CVE-2020-4071 PyPI LOW PATCH Monitor

In django-basic-auth-ip-whitelist before 0.3.4, a potential timing attack exists on websites where the basic authentication is used or configured, i.e. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Python Information Disclosure Django Basic Auth Ip Whitelist
NVD GitHub
CVSS 3.1
2.4
EPSS
0.4%
EPSS 0% CVSS 2.4
LOW PATCH Monitor

In django-basic-auth-ip-whitelist before 0.3.4, a potential timing attack exists on websites where the basic authentication is used or configured, i.e. Rated low severity (CVSS 2.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Python Information Disclosure Django Basic Auth Ip Whitelist
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy