CVE-2024-39317
Wagtail regular expression denial-of-service via search query parsing
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
Wagtail is an open source content management system built on Django. A bug in Wagtail's `parse_query_string` would result in it taking a long time to process suitably crafted inputs. When used to parse sufficiently long strings of characters without a space, `parse_query_string` would take an unexpectedly large amount of time to process, resulting in a denial of service. In an initial Wagtail installation, the vulnerability can be exploited by any Wagtail admin user. It cannot be exploited by end users. If your Wagtail site has a custom search implementation which uses `parse_query_string`, it may be exploitable by other users (e.g. unauthenticated users). Patched versions have been released as Wagtail 5.2.6, 6.0.6 and 6.1.3.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-06-21 CVE Reserved
- 2024-07-11 CVE Published
- 2024-08-02 CVE Updated
- 2024-09-20 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-1333: Inefficient Regular Expression Complexity
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| https://github.com/wagtail/wagtail/commit/31b1e8532dfb1b70d8d37d22aff9cbde9109cdf2 | X_refsource_misc | |
| https://github.com/wagtail/wagtail/commit/3c941136f79c48446e3858df46e5b668d7f83797 | X_refsource_misc | |
| https://github.com/wagtail/wagtail/commit/b783c096b6d4fd2cfc05f9137a0be288850e99a2 | X_refsource_misc | |
| https://github.com/wagtail/wagtail/security/advisories/GHSA-jmp3-39vp-fwg8 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Wagtail Search vendor "Wagtail" | Wagtail Search vendor "Wagtail" for product "Wagtail" | >= 2.0.0 < 5.2.6 Search vendor "Wagtail" for product "Wagtail" and version " >= 2.0.0 < 5.2.6" | en |
Affected
| ||||||
| Wagtail Search vendor "Wagtail" | Wagtail Search vendor "Wagtail" for product "Wagtail" | >= 6.0.0 < 6.0.6 Search vendor "Wagtail" for product "Wagtail" and version " >= 6.0.0 < 6.0.6" | en |
Affected
| ||||||
| Wagtail Search vendor "Wagtail" | Wagtail Search vendor "Wagtail" for product "Wagtail" | >= 6.1.0 < 6.1.3 Search vendor "Wagtail" for product "Wagtail" and version " >= 6.1.0 < 6.1.3" | en |
Affected
| ||||||