CVE-2023-28837

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-28837
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28837.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-28837
Aliases
Published
2023-04-03T17:15:07Z
Modified
2024-05-30T04:03:19.420929Z
Severity
  • 4.9 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Wagtail is an open source content management system built on Django. Prior to versions 4.1.4 and 4.2.2, a memory exhaustion bug exists in Wagtail's handling of uploaded images and documents. For both images and documents, files are loaded into memory during upload for additional processing. A user with access to upload images or documents through the Wagtail admin interface could upload a file so large that it results in a crash of denial of service.

The vulnerability is not exploitable by an ordinary site visitor without access to the Wagtail admin. It can only be exploited by admin users with permission to upload images or documents.

Image uploads are restricted to 10MB by default, however this validation only happens on the frontend and on the backend after the vulnerable code.

Patched versions have been released as Wagtail 4.1.4 and Wagtail 4.2.2). Site owners who are unable to upgrade to the new versions are encouraged to add extra protections outside of Wagtail to limit the size of uploaded files.

References

Affected packages

Git / github.com/wagtail/wagtail

Affected ranges

Type
GIT
Repo
https://github.com/wagtail/wagtail
Events

Affected versions

Other

after-modeladmin-fix
caltech-upgrade-point-1

v0.*

v0.1
v0.2
v0.3
v0.3.1
v0.4
v0.5
v0.6
v0.7
v0.8
v0.8.1

v1.*

v1.0b1
v1.0b2
v1.0rc1
v1.10rc1
v1.1rc1
v1.2rc1
v1.3rc1
v1.4rc1
v1.5rc1
v1.6rc1
v1.8rc1

v2.*

v2.0b1
v2.11.rc1
v2.16rc1
v2.1rc1
v2.2rc1
v2.8rc1

v4.*

v4.1rc1