PyPi: Mod-Wsgi

CVE-2014-0240

Safety vulnerability ID: 61532

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at May 27, 2014 Updated at Oct 01, 2024

Scan your Python projects for vulnerabilities →

Advisory

Mod-wsgi 3.5 includes a fix for CVE-2014-0240: Local privilege escalation when using daemon mode.
https://github.com/GrahamDumpleton/mod_wsgi/commit/d9d5fea585b23991f76532a9b07de7fcd3b649f4

Affected package

mod-wsgi

Latest version: 5.0.1

Installer for Apache/mod_wsgi.

Affected versions

Fixed versions

Vulnerability changelog

For details on this release see:
- http://modwsgi.readthedocs.org/en/latest/release-notes/version-3.5.html

**Note that version 3.5 of mod_wsgi contains a fix for a security related issue. It is recommended that prior versions of mod_wsgi not be used.**

Resources

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application

Severity Details

CVSS Base Score

MEDIUM 6.2

CVSS v2 Details

MEDIUM 6.2

Access Vector (AV): LOCAL
Access Complexity (AC): HIGH
Authentication (Au): NONE
Confidentiality Impact (C): COMPLETE
Integrity Impact (I): COMPLETE
Availability Impact (A): COMPLETE