CVE-2020-13254 log

Severity Medium
Remote Yes
Type Information disclosure
An information disclosure issue has been found in Django before 3.0.7, via malformed memcached keys. In cases where a memcached backend does not perform key validation, passing malformed cache keys could result in a key collision, and potential data leakage. In order to avoid this vulnerability, key validation is added to the memcached cache backends.
Group Package Affected Fixed Severity Status Ticket
AVG-1176 python-django 3.0.6-2 3.0.7-1 Medium Fixed
Date Advisory Group Package Severity Type
06 Jun 2020 ASA-202006-8 AVG-1176 python-django Medium multiple issues