Product Research Enterprise Plans Docs

PyPi: Django-Aws-Api-Gateway-Websockets

CVE-2024-37891

Transitive

Safety vulnerability ID: 72187

This vulnerability was reviewed by experts

The information on this page was manually curated by our Cybersecurity Intelligence Team.

Created at Jun 17, 2024 Updated at Mar 17, 2025

Scan your Python projects for vulnerabilities →

Advisory

Django-aws-api-gateway-websockets 1.0.19 updates its dependency 'urllib3' to versions >=2.2.2 to include a security fix.

Affected package

django-aws-api-gateway-websockets

Latest version: 1.1.2

Created to allow Django projects to be used as a HTTP backend for AWS API Gateway websockets

Affected versions

Fixed versions

Vulnerability changelog

- Updating the requirements for the pipline to use Django 5.0.7 or Django 4.2.14

- 1.0.18 - 2nd July 2024
- Updating the requirements so Python 3.10+ requires urllib3>=2.2.2 due to the security issues with 2.0.0 through 2.2.1

Resources

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-37891

Use this package?

Scan your Python project for dependency vulnerabilities in two minutes

Scan your application