CVE-2024-1892

Parts of the Scrapy API were found to be vulnerable to a ReDoS attack. Handling a malicious response could cause extreme CPU and memory usage during the parsing of its content, due to the use of vulnerable regular expressions for that parsing.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5	Patch
https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b	Exploit Issue Tracking Patch Third Party Advisory
https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5	Patch
https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b	Exploit Issue Tracking Patch Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:scrapy:scrapy:*:*:*:*:*:*:*:*

History

10 Jan 2025, 14:49

Type	Values Removed	Values Added
References	~~() https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5 -~~	() https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5 - Patch
References	~~() https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b -~~	() https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b - Exploit, Issue Tracking, Patch, Third Party Advisory
First Time		Scrapy scrapy Scrapy
CPE		cpe:2.3:a:scrapy:scrapy::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~7.5~~	v2 : unknown v3 : 6.5

21 Nov 2024, 08:51

Type	Values Removed	Values Added
References	~~() https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5 -~~	() https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5 -
References	~~() https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b -~~	() https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b -

28 Feb 2024, 00:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-02-28 00:15

Updated : 2025-01-10 14:49

NVD link : CVE-2024-1892

Mitre link : CVE-2024-1892

CVE.ORG link : CVE-2024-1892

JSON object : View

Products Affected

scrapy

scrapy

CWE

CWE-1333

Inefficient Regular Expression Complexity

{"id": "CVE-2024-1892", "cveTags": [], "metrics": {"cvssMetricV30": [{"type": "Secondary", "source": "security@huntr.dev", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2024-02-28T00:15:53.897", "references": [{"url": "https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5", "tags": ["Patch"], "source": "security@huntr.dev"}, {"url": "https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "source": "security@huntr.dev"}, {"url": "https://github.com/scrapy/scrapy/commit/479619b340f197a8f24c5db45bc068fb8755f2c5", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://huntr.com/bounties/271f94f2-1e05-4616-ac43-41752389e26b", "tags": ["Exploit", "Issue Tracking", "Patch", "Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "security@huntr.dev", "description": [{"lang": "en", "value": "CWE-1333"}]}], "descriptions": [{"lang": "en", "value": "A Regular Expression Denial of Service (ReDoS) vulnerability exists in the XMLFeedSpider class of the scrapy/scrapy project, specifically in the parsing of XML content. By crafting malicious XML content that exploits inefficient regular expression complexity used in the parsing process, an attacker can cause a denial-of-service (DoS) condition. This vulnerability allows for the system to hang and consume significant resources, potentially rendering services that utilize Scrapy for XML processing unresponsive."}, {"lang": "es", "value": "Se descubri\u00f3 que partes de la API Scrapy eran vulnerables a un ataque ReDoS. Manejar una respuesta maliciosa podr\u00eda causar un uso extremo de CPU y memoria durante el an\u00e1lisis de su contenido, debido al uso de expresiones regulares vulnerables para ese an\u00e1lisis."}], "lastModified": "2025-01-10T14:49:33.690", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:scrapy:scrapy:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99249052-7A1E-4B27-9201-E420B8FB7782", "versionEndExcluding": "2.11.1"}], "operator": "OR"}]}], "sourceIdentifier": "security@huntr.dev"}