Description

Python Social Auth is a social authentication/registration mechanism. Prior to version 5.4.1, due to default case-insensitive collation in MySQL or MariaDB databases, third-party authentication user IDs are not case-sensitive and could cause different IDs to match. This issue has been addressed by a fix released in version 5.4.1. An immediate workaround would be to change collation of the affected field.

INFO

Published Date :

2024-04-24T19:42:14.642Z

Last Modified :

2024-08-02T02:20:35.665Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2024-32879 vulnerability.

Vendors Products
Python-social-auth
  • Social-app-django
Redhat
  • Ansible Automation Platform

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact