CVE-2024-56374

Summary

Django has a potential denial-of-service vulnerability in IPv6 validation

Severity

medium

EPSS

1.9% (p76)

Also known as

GHSA-qcgg-j2x8-h9g8, BIT-django-2024-56374, PYSEC-2025-1

Published

2025-01-14

References

• https://nvd.nist.gov/vuln/detail/CVE-2024-56374
• https://github.com/django/django/commit/4806731e58f3e8700a3c802e77899d54ac6021fe
• https://github.com/django/django/commit/ad866a1ca3e7d60da888d25d27e46a8adb2ed36e

Related advisories

• CVE-2026-4277 — critical · PyPI/django
• CVE-2025-64459 — critical · PyPI/django
• CVE-2026-3902 — high · PyPI/django
• CVE-2026-33034 — high · PyPI/django
• CVE-2026-25673 — high · PyPI/django
• CVE-2026-1287 — high · PyPI/django
• CVE-2026-1207 — high · PyPI/django
• CVE-2026-1285 — high · PyPI/django

Is your project exposed to this? Stateward checks every dependency on every pull request and flags it only if your code actually reaches it.

Summarize with AI

ChatGPTClaudePerplexity