CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

Tenable Nessus•added 2025/06/16 12:0 a.m.•6 views

TencentOS Server 4: python-twisted (TSSA-2024:1067)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:1067 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.3CVSS6.2AI score0.67844EPSS

Exploits1References4

Microsoft CVE•added 2025/04/01 7:0 a.m.•1 views

go-redis allows potential out of order responses when `CLIENT SETINFO` times out during connection establishment

...

3.7CVSS5.9AI score0.00158EPSS

Exploits0

OSV•added 2024/11/26 6:25 p.m.•1 views

USN-6988-2 twisted vulnerability

USN-6988-1 fixed CVE-2024-41671 in Twisted. The USN incorrectly stated that previous releases were unaffected. This update provides the equivalent fix for Ubuntu 22.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 18.04 LTS. Original advisory details: Ben Kallus discovered that Twisted incorrectly handled...

8.3CVSS7.3AI score0.00108EPSS

Exploits0References2

Tenable Nessus•added 2024/09/04 12:0 a.m.•21 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS : Twisted vulnerabilities (USN-6988-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6988-1 advisory. It was discovered that Twisted incorrectly handled response order when processing multiple HT...

8.3CVSS6.5AI score0.67844EPSS

Exploits0References3

RedHat Linux•added 2024/03/26 12:24 p.m.•3 views

python-twisted: disordered HTTP pipeline response in twisted.web

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS5.8AI score0.0074EPSS

Exploits1References4

OSV•added 2024/01/10 1:39 p.m.•1 views

USN-6575-1 twisted vulnerabilities

It was discovered that Twisted incorrectly escaped host headers in certain 404 responses. A remote attacker could possibly use this issue to perform HTML and script injection attacks. This issue only affected Ubuntu 20.04 LTS and Ubuntu 22.04 LTS. CVE-2022-39348 It was discovered that Twisted...

5.4CVSS6.4AI score0.01199EPSS

Exploits2References3

OSV•added 2024/01/05 11:6 a.m.•2 views

OESA-2024-1011 python-twisted security update

Twisted is an event-based framework for internet applications, supporting Python 2.7 and Python 3.5+. It includes modules for many different purposes, including the following: Security Fixes: Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending...

5.3CVSS6.9AI score0.0074EPSS

Exploits1References2

OSV•added 2024/01/05 11:6 a.m.•1 views

OESA-2024-1015 python-twisted security update

5.3CVSS6.9AI score0.0074EPSS

Exploits1References2

OSV•added 2024/01/05 11:6 a.m.•3 views

OESA-2024-1012 python-twisted security update

5.3CVSS6.9AI score0.0074EPSS

Exploits1References2

Tenable Nessus•added 2023/11/15 12:0 a.m.•40 views

Amazon Linux 2023 : python3-twisted, python3-twisted+tls (ALAS2023-2023-432)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-432 advisory. Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously...

5.3CVSS6.2AI score0.0074EPSS

Exploits1References4

SUSE CVE•added 2023/10/27 12:56 a.m.•1 views

SUSE CVE-2023-46137

5.9CVSS6.9AI score0.0074EPSS

Exploits1References7

OSV•added 2023/10/25 9:15 p.m.•1 views

AZL-35140 CVE-2023-46137 affecting package python-twisted for versions less than 22.10.0-4

5.3CVSS6.4AI score0.0074EPSS

Exploits1References1

OSV•added 2023/10/25 9:15 p.m.•1 views

DEBIAN-CVE-2023-46137

5.3CVSS6.2AI score0.0074EPSS

Exploits1References1

Prion•added 2023/10/25 9:15 p.m.•28 views

Design/Logic Flaw

5CVSS5.1AI score0.0074EPSS

Exploits1References1Affected Software1

OSV•added 2023/10/25 9:15 p.m.•0 views

UBUNTU-CVE-2023-46137

5.3CVSS6.4AI score0.0074EPSS

Exploits1References4

OSV•added 2023/10/25 8:56 p.m.•35 views

CVE-2023-46137 twisted.web has disordered HTTP pipeline response

5.3CVSS5.7AI score0.0074EPSS

Exploits1References4

Debian CVE•added 2023/10/25 8:56 p.m.•31 views

CVE-2023-46137

5.3CVSS5.1AI score0.0074EPSS

Exploits1

CNNVD•added 2023/10/25 12:0 a.m.•1 views

Twisted Environmental Issues Vulnerability

Twisted is an event-driven open source web engine written in the Python language. A security vulnerability exists in versions prior to Twisted 23.10.0rc1, which stems from the fact that when multiple HTTP requests are sent in a single TCP packet, twisted.web processes the requests asynchronously...

5.3CVSS6.8AI score0.0074EPSS

Exploits1References6

Oracle linux•added 2022/11/15 12:0 a.m.•45 views

bind9.16 security update

32:9.16.23-0.9.1 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178 32:9.16.23-0.9 - Tighten cache protection against record from forwarders CVE-2021-25220 - Include test of...

7.5CVSS2.1AI score0.01421EPSS

Exploits0

CNNVD•added 2022/03/16 12:0 a.m.•1 views

ISC BIND 资源管理错误漏洞

ISC BIND is a suite of open source software from ISC Corporation that implements the DNS protocol. A resource management error vulnerability exists in ISC BIND, which stems from the fact that a TCP connection with "keep-response-order" enabled may leave the TCP interface in the "CLOSEWAIT " state...

5.3CVSS6.8AI score0.00113EPSS

Exploits0References23

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by