In Django 3.2 before 3.2.21, 4.1 before 4.1.11, and 4.2 before 4.2.5, django.utils.encoding.uritoiri() is subject to a potential DoS (denial of service) attack via certain inputs with a very large number of Unicode characters.
{ "nvd_published_at": "2023-11-03T05:15:29Z", "cwe_ids": [ "CWE-1284", "CWE-400" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2023-11-03T19:32:41Z" }