[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2021-45115":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":23,"downstream":24,"duplicates":51,"related":52,"reserved_at":9,"published_at":61,"modified_at":62,"state":63,"summary":64,"references_raw":73,"kevs":154,"epss":155,"epss_history":158,"metrics":421,"affected":436},"CVE-2021-45115","An issue was discovered in Django 2.2 before 2.2.26, 3.2 before 3.2.11, and 4.0 before 4.0.1. UserAttributeSimilarityValidator incurred significant overhead in evaluating a submitted password that was artificially large in relation to the comparison values. In a situation where access to user registration was unrestricted, this provided a potential vector for a denial-of-service attack.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],[],[20,21,22],"GHSA-53qw-q765-4fww","BIT-django-2021-45115","PYSEC-2022-1",[],[25,27,29,31,33,35,37,39,41,43,45,47,49],{"_key":26},"SUSE-SU-2022:0103-1",{"_key":28},"SUSE-SU-2022:0102-1",{"_key":30},"UBUNTU-CVE-2021-45115",{"_key":32},"OPENSUSE-SU-2023:0005-1",{"_key":34},"OPENSUSE-SU-2024:11725-1",{"_key":36},"OPENSUSE-SU-2024:14208-1",{"_key":38},"OPENSUSE-SU-2025:14662-1",{"_key":40},"DLA-3177-1",{"_key":42},"OPENSUSE-SU-2026:10005-1",{"_key":44},"MGASA-2022-0011",{"_key":46},"USN-5204-1",{"_key":48},"DEBIAN-CVE-2021-45115",{"_key":50},"RHSA-2022:5498",[],[53,54,55,56,57,58,59,60],{"_key":26},{"_key":28},{"_key":32},{"_key":34},{"_key":36},{"_key":38},{"_key":42},{"_key":44},"2022-01-04T23:16:00.000Z","2024-08-04T04:39:20.303Z","Modified",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":66,"epss_score":67,"severity":68,"severity_score":69,"severity_version":70,"severity_source":71,"severity_vector":72,"severity_status":63},false,"low",0.00414,"high",7.5,"v3.1","nvd","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[74,80,88,94,99,104,109,113,117,121,125,129,134,138,142,146,150],{"url":75,"sources":76,"tags":78},"https://groups.google.com/forum/#%21forum/django-announce",[77,71],"cve.org",[79],"X Refsource MISC",{"url":81,"sources":82,"tags":84},"https://docs.djangoproject.com/en/4.0/releases/security/",[77,71,83],"osv_pypi",[79,85,86,87],"Patch","Vendor Advisory","WEB",{"url":89,"sources":90,"tags":91},"https://www.djangoproject.com/weblog/2022/jan/04/security-releases/",[77,71,83],[92,85,86,93],"X Refsource CONFIRM","ARTICLE",{"url":95,"sources":96,"tags":97},"https://security.netapp.com/advisory/ntap-20220121-0005/",[77,71],[92,98],"Third Party Advisory",{"url":100,"sources":101,"tags":102},"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV/",[77,71],[86,103],"X Refsource FEDORA",{"url":105,"sources":106,"tags":107},"https://nvd.nist.gov/vuln/detail/CVE-2021-45115",[83],[108],"Advisory",{"url":110,"sources":111,"tags":112},"https://github.com/django/django/commit/2135637fdd5ce994de110affef9e67dffdf77277",[83],[87],{"url":114,"sources":115,"tags":116},"https://github.com/django/django/commit/a8b32fe13bcaed1c0b772fdc53de84abc224fb20",[83],[87],{"url":118,"sources":119,"tags":120},"https://github.com/django/django/commit/df79ef03ac867c93caaa6be56bc69e66abfeef8f",[83],[87],{"url":122,"sources":123,"tags":124},"https://docs.djangoproject.com/en/4.0/releases/security",[83],[87],{"url":126,"sources":127,"tags":128},"https://github.com/advisories/GHSA-53qw-q765-4fww",[83],[108],{"url":130,"sources":131,"tags":132},"https://github.com/django/django",[83],[133],"PACKAGE",{"url":135,"sources":136,"tags":137},"https://github.com/pypa/advisory-database/tree/main/vulns/django/PYSEC-2022-1.yaml",[83],[87],{"url":139,"sources":140,"tags":141},"https://groups.google.com/forum/#!forum/django-announce",[83],[87],{"url":143,"sources":144,"tags":145},"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/B4SQG2EAF4WCI2SLRL6XRDJ3RPK3ZRDV",[83],[87],{"url":147,"sources":148,"tags":149},"https://security.netapp.com/advisory/ntap-20220121-0005",[83],[87],{"url":151,"sources":152,"tags":153},"https://www.djangoproject.com/weblog/2022/jan/04/security-releases",[83],[87],[],{"date":156,"score":67,"percentile":157},"2026-06-04",0.61943,[159,163,166,169,172,175,178,181,184,188,191,194,197,199,202,206,209,212,215,217,220,223,226,228,230,233,236,239,242,245,248,251,254,257,260,262,265,268,271,274,277,280,283,285,287,290,293,296,299,302,305,308,311,314,317,319,322,325,328,331,334,337,340,343,345,348,351,354,357,360,363,366,369,372,375,378,382,385,388,391,394,397,400,403,405,408,410,412,415,418],{"date":160,"score":161,"percentile":162},"2025-11-04",0.00389,0.59319,{"date":164,"score":161,"percentile":165},"2025-11-05",0.59305,{"date":167,"score":161,"percentile":168},"2025-11-06",0.59309,{"date":170,"score":161,"percentile":171},"2025-11-07",0.59328,{"date":173,"score":161,"percentile":174},"2025-11-08",0.59326,{"date":176,"score":161,"percentile":177},"2025-11-09",0.59318,{"date":179,"score":161,"percentile":180},"2025-11-10",0.59294,{"date":182,"score":161,"percentile":183},"2025-11-11",0.59306,{"date":185,"score":186,"percentile":187},"2025-11-12",0.00423,0.61378,{"date":189,"score":186,"percentile":190},"2025-11-13",0.61384,{"date":192,"score":186,"percentile":193},"2025-11-14",0.61393,{"date":195,"score":186,"percentile":196},"2025-11-15",0.61386,{"date":198,"score":186,"percentile":187},"2025-11-16",{"date":200,"score":186,"percentile":201},"2025-11-17",0.61379,{"date":203,"score":204,"percentile":205},"2025-11-18",0.00772,0.71399,{"date":207,"score":204,"percentile":208},"2025-11-19",0.71406,{"date":210,"score":204,"percentile":211},"2025-11-20",0.71414,{"date":213,"score":186,"percentile":214},"2025-11-21",0.61387,{"date":216,"score":186,"percentile":193},"2025-11-22",{"date":218,"score":186,"percentile":219},"2025-11-23",0.61376,{"date":221,"score":186,"percentile":222},"2025-11-24",0.61371,{"date":224,"score":186,"percentile":225},"2025-11-25",0.61377,{"date":227,"score":186,"percentile":201},"2025-11-26",{"date":229,"score":186,"percentile":196},"2025-11-27",{"date":231,"score":186,"percentile":232},"2025-11-28",0.61366,{"date":234,"score":186,"percentile":235},"2025-11-29",0.61342,{"date":237,"score":186,"percentile":238},"2025-11-30",0.61332,{"date":240,"score":186,"percentile":241},"2025-12-01",0.61485,{"date":243,"score":186,"percentile":244},"2025-12-02",0.61499,{"date":246,"score":186,"percentile":247},"2025-12-03",0.61501,{"date":249,"score":186,"percentile":250},"2025-12-04",0.61328,{"date":252,"score":186,"percentile":253},"2025-12-05",0.61339,{"date":255,"score":186,"percentile":256},"2025-12-06",0.61336,{"date":258,"score":186,"percentile":259},"2025-12-07",0.61331,{"date":261,"score":186,"percentile":256},"2025-12-08",{"date":263,"score":186,"percentile":264},"2025-12-09",0.61375,{"date":266,"score":186,"percentile":267},"2025-12-10",0.61422,{"date":269,"score":186,"percentile":270},"2025-12-11",0.6144,{"date":272,"score":186,"percentile":273},"2025-12-12",0.61464,{"date":275,"score":186,"percentile":276},"2025-12-13",0.61469,{"date":278,"score":186,"percentile":279},"2025-12-14",0.61468,{"date":281,"score":186,"percentile":282},"2025-12-15",0.61448,{"date":284,"score":186,"percentile":279},"2025-12-16",{"date":286,"score":186,"percentile":241},"2025-12-17",{"date":288,"score":186,"percentile":289},"2025-12-18",0.61524,{"date":291,"score":186,"percentile":292},"2025-12-19",0.61535,{"date":294,"score":186,"percentile":295},"2025-12-20",0.61534,{"date":297,"score":186,"percentile":298},"2025-12-21",0.61522,{"date":300,"score":186,"percentile":301},"2025-12-22",0.61512,{"date":303,"score":186,"percentile":304},"2025-12-23",0.61528,{"date":306,"score":186,"percentile":307},"2025-12-24",0.61538,{"date":309,"score":186,"percentile":310},"2025-12-25",0.61569,{"date":312,"score":186,"percentile":313},"2025-12-26",0.61564,{"date":315,"score":186,"percentile":316},"2025-12-27",0.61617,{"date":318,"score":186,"percentile":307},"2025-12-28",{"date":320,"score":186,"percentile":321},"2025-12-29",0.61536,{"date":323,"score":186,"percentile":324},"2025-12-30",0.6155,{"date":326,"score":186,"percentile":327},"2025-12-31",0.61574,{"date":329,"score":186,"percentile":330},"2026-01-01",0.61761,{"date":332,"score":186,"percentile":333},"2026-01-02",0.6175,{"date":335,"score":186,"percentile":336},"2026-01-03",0.61746,{"date":338,"score":186,"percentile":339},"2026-01-04",0.61551,{"date":341,"score":186,"percentile":342},"2026-01-05",0.6154,{"date":344,"score":186,"percentile":339},"2026-01-06",{"date":346,"score":186,"percentile":347},"2026-01-07",0.61573,{"date":349,"score":186,"percentile":350},"2026-01-08",0.61598,{"date":352,"score":186,"percentile":353},"2026-01-09",0.61601,{"date":355,"score":186,"percentile":356},"2026-01-10",0.61594,{"date":358,"score":186,"percentile":359},"2026-01-11",0.6158,{"date":361,"score":186,"percentile":362},"2026-01-12",0.61553,{"date":364,"score":186,"percentile":365},"2026-01-13",0.61532,{"date":367,"score":186,"percentile":368},"2026-01-14",0.61577,{"date":370,"score":186,"percentile":371},"2026-01-15",0.61575,{"date":373,"score":186,"percentile":374},"2026-01-16",0.61593,{"date":376,"score":186,"percentile":377},"2026-01-17",0.61586,{"date":379,"score":380,"percentile":381},"2026-01-18",0.00461,0.63575,{"date":383,"score":380,"percentile":384},"2026-01-19",0.63563,{"date":386,"score":380,"percentile":387},"2026-01-20",0.63576,{"date":389,"score":380,"percentile":390},"2026-01-21",0.6358,{"date":392,"score":380,"percentile":393},"2026-01-22",0.63588,{"date":395,"score":380,"percentile":396},"2026-01-23",0.63619,{"date":398,"score":380,"percentile":399},"2026-01-24",0.63624,{"date":401,"score":380,"percentile":402},"2026-01-25",0.63589,{"date":404,"score":186,"percentile":327},"2026-01-26",{"date":406,"score":186,"percentile":407},"2026-01-27",0.61578,{"date":409,"score":186,"percentile":377},"2026-01-28",{"date":411,"score":186,"percentile":377},"2026-01-29",{"date":413,"score":186,"percentile":414},"2026-01-30",0.61591,{"date":416,"score":186,"percentile":417},"2026-01-31",0.61597,{"date":419,"score":186,"percentile":420},"2026-02-01",0.61732,[422,431],{"source":71,"cvss_v2_0":423,"cvss_v3_0":9,"cvss_v3_1":428,"cvss_v4_0":9},{"baseScore":424,"baseSeverity":9,"vectorString":425,"impactScore":426,"exploitabilityScore":427},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,10,{"baseScore":69,"baseSeverity":429,"vectorString":72,"impactScore":430,"exploitabilityScore":427},"HIGH",6,{"source":83,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":432,"cvss_v4_0":433},{"baseScore":69,"baseSeverity":9,"vectorString":72,"impactScore":430,"exploitabilityScore":427},{"baseScore":434,"baseSeverity":9,"vectorString":435,"impactScore":9,"exploitabilityScore":9},8.7,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",[437,459,466],{"ecosystem":9,"name":438,"vendor":439,"product":440,"cpe_part":441,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":442},"Django","djangoproject","django","a",[443,451,455],{"version":444,"is_range":445,"range_type":446,"version_start":447,"version_start_type":448,"version_end":449,"version_end_type":450,"fixed_in":9},"gte2.2_lt2.2.26",true,"cpe","2.2","including","2.2.26","excluding",{"version":452,"is_range":445,"range_type":446,"version_start":453,"version_start_type":448,"version_end":454,"version_end_type":450,"fixed_in":9},"gte3.2_lt3.2.11","3.2","3.2.11",{"version":456,"is_range":445,"range_type":446,"version_start":457,"version_start_type":448,"version_end":458,"version_end_type":450,"fixed_in":9},"gte4.0_lt4.0.1","4.0","4.0.1",{"ecosystem":9,"name":460,"vendor":461,"product":460,"cpe_part":462,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":463},"fedora","fedoraproject","o",[464],{"version":465,"is_range":65,"range_type":446,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"35",{"ecosystem":467,"name":440,"vendor":467,"product":440,"cpe_part":9,"purl_type":468,"purl_namespace":9,"purl_name":440,"source":9,"versions":469},"PyPI","pypi",[470,474,477,480],{"version":471,"is_range":445,"range_type":472,"version_start":473,"version_start_type":448,"version_end":449,"version_end_type":450,"fixed_in":9},"gte2_2a1_lt2_2_26","ecosystem","2.2a1",{"version":475,"is_range":445,"range_type":472,"version_start":476,"version_start_type":448,"version_end":454,"version_end_type":450,"fixed_in":9},"gte3_2a1_lt3_2_11","3.2a1",{"version":478,"is_range":445,"range_type":472,"version_start":479,"version_start_type":448,"version_end":458,"version_end_type":450,"fixed_in":9},"gte4_0a1_lt4_0_1","4.0a1",{"version":481,"is_range":445,"range_type":472,"version_start":457,"version_start_type":448,"version_end":458,"version_end_type":450,"fixed_in":9},"gte4_0_lt4_0_1"]