django-celery-results through 1.2.1 stores task results in the database. Among the data it stores are the variables passed into the tasks. The variables may contain sensitive cleartext information that does not belong unencrypted in the database.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://github.com/celery/django-celery-results/issues/142 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2020-08-11T20:54:27
Updated: 2024-08-04T14:00:47.514Z
Reserved: 2020-08-11T00:00:00
Link: CVE-2020-17495
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-08-11T21:15:10.943
Modified: 2024-11-21T05:08:13.470
Link: CVE-2020-17495
Redhat
No data.