CVE-2025-14550 – Potential denial-of-service vulnerability via repeated headers when using ASGI

CVE ID : CVE-2025-14550

Published : Feb. 3, 2026, 2:38 p.m. | 39 minutes ago

Description : An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28.
`ASGIRequest` allows a remote attacker to cause a potential denial-of-service via a crafted request with multiple duplicate headers.
Earlier, unsupported Django series (such as 5.0.x, 4.1.x, and 3.2.x) were not evaluated and may also be affected.
Django would like to thank Jiyong Yang for reporting this issue.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-65017 – Decidim’s private data exports can lead to data leaks

CVE-2026-1814 – Rapid7 Nexpose Insecure Java Keystore Password Generation

CVE-2020-37102 – Adaware Web Companion 4.9.2159 – ‘WCAssistantService’ Unquoted Service Path

CVE-2020-37101 – VPN unlimited 6.1 – Unquoted Service Path