Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : python-twisted-web-12.1.0-7.el7 (AXSA:2020-025:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2020-025:01 advisory. python-twisted: HTTP request smuggling when presented with two Content-Length headers CVE-2020-10108 python-twisted: HTTP request smuggling when...

9.8CVSS8.5AI score0.04083EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2019-12387

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF...

6.1CVSS6.9AI score0.02535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.27 views

Oracle Linux 7 : python-twisted-web (ELSA-2020-1091)

The remote Oracle Linux 7 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2020-1091 advisory. 12.1.0-6 - Fix CVE-2019-12387 HTTP Header Injection Resolves: rhbz1721518 Tenable has extracted the preceding description block directly from the Oracle Linux...

6.1CVSS7AI score0.02535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2022/11/19 12:0 a.m.22 views

SUSE SLES12 Security Update : python-Twisted (SUSE-SU-2022:4074-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4074-1 advisory. - CVE-2022-39348: Fixed NameVirtualHost Host header injection bsc1204781. Tenable has extracted the preceding description block...

9.8CVSS6.8AI score0.04083EPSS
Exploits3References10
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.57 views

Ubuntu: Security Advisory (USN-4308-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.04083EPSS
Exploits3References2
OpenVAS
OpenVAS
added 2022/03/22 12:0 a.m.24 views

Twisted Web < 19.2.1 Character Injection Vulnerability

Twisted Web is prone to a character injection vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

6.1CVSS7.1AI score0.02535EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.30 views

Mageia: Security Advisory (MGASA-2019-0360)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4CVSS6.9AI score0.02535EPSS
Exploits1References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2019:2066-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS7AI score0.02535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/12/11 12:0 a.m.32 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : python-twisted-web Multiple Vulnerabilities (NS-SA-2020-0078)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has python-twisted-web packages installed that are affected by multiple vulnerabilities: - In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characte...

9.8CVSS7AI score0.04083EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2020/07/15 12:0 a.m.26 views

Photon OS 2.0: Python PHSA-2020-2.0-0260

An update of the python package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0260. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid13851...

7.4CVSS7.2AI score0.02535EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2020/04/22 12:0 a.m.43 views

FreeBSD : py-twisted -- multiple vulnerabilities (9fbaefb3-837e-11ea-b5b4-641c67a117d8) (Ping Flood) (Reset Flood) (Settings Flood)

Twisted developers reports : All HTTP clients in twisted.web.client now raise a ValueError when called with a method and/or URL that contain invalid characters. This mitigates CVE-2019-12387. Thanks to Alex Brasetvik for reporting this vulnerability. The HTTP/2 server implementation now enforces...

9.8CVSS7.4AI score0.87806EPSS
Exploits4References9
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.26 views

Scientific Linux Security Update : python-twisted-web on SL7.x x86_64 (20200407)

python-twisted: Improper neutralization of CRLF characters in URIs and HTTP methods C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid135832; scriptversion"1.3"; scriptsetattributeattribute:"pluginmodificationdate",...

6.1CVSS6.9AI score0.02535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/04/01 12:0 a.m.76 views

RHEL 7 : python-twisted-web (RHSA-2020:1091)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2020:1091 advisory. Twisted is an event-based framework for internet applications. Twisted Web is a complete web server, aimed at hosting web applications using Twisted...

6.1CVSS7.1AI score0.02535EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2020/03/31 7:10 p.m.57 views

Moderate: Red Hat Security Advisory: python-twisted-web security update

An update for python-twisted-web is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

6.1CVSS6.8AI score0.02535EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/03/20 12:0 a.m.57 views

Ubuntu: Security Advisory (USN-4308-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.8AI score0.87806EPSS
Exploits4References2
Mageia
Mageia
added 2019/12/06 2:15 p.m.47 views

Updated python-twisted packages fix security vulnerabilities

Updated python-twisted packages fix security vulnerabilities: Improper sanitization of URIs or HTTP which could allow attackers to perform CRLF attacks CVE-2019-12387. In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS,...

7.4CVSS3.4AI score0.02535EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.29 views

Fedora 29 : python-twisted (2019-b67877d7c2)

Fix CVE-2019-12387 rhbz1719503 rhbz1719501 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenab...

6.1CVSS6.9AI score0.02535EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.30 views

SUSE SLES12 Security Update : python-Twisted (SUSE-SU-2019:2066-1)

This update for python-Twisted fixes the following issue : Security issue fixed : CVE-2019-12387: Fixed an improper sanitization of URIs or HTTP which could have allowed attackers to perfrom CRLF attacks bsc1137825. Note that Tenable Network Security has extracted the preceding description block...

6.1CVSS7AI score0.02535EPSS
Exploits1References4
OSV
OSV
added 2019/08/06 1:53 p.m.7 views

SUSE-SU-2019:2066-1 Security update for python-Twisted

This update for python-Twisted fixes the following issue: Security issue fixed: - CVE-2019-12387: Fixed an improper sanitization of URIs or HTTP which could have allowed attackers to perfrom CRLF attacks bsc1137825...

6.1CVSS6.4AI score0.02535EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2019/07/22 12:0 a.m.28 views

openSUSE: Security Advisory for python-Twisted (openSUSE-SU-2019:1760-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.1CVSS6.7AI score0.02535EPSS
Exploits1References2
Rows per page
Query Builder