Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-0250

Malicious code in bioql PyPI...

5.3CVSS5.8AI score0.00766EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/04/02 7:34 p.m.4 views

python-twisted: disordered HTTP pipeline response in twisted.web

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS5.8AI score0.00766EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2024/03/26 12:24 p.m.34 views

python-twisted: disordered HTTP pipeline response in twisted.web

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS5.8AI score0.00766EPSS
Exploits1References4
OSV
OSV
added 2024/01/05 11:6 a.m.5 views

OESA-2024-1012 python-twisted security update

Twisted is an event-based framework for internet applications, supporting Python 2.7 and Python 3.5+. It includes modules for many different purposes, including the following: Security Fixes: Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending...

5.3CVSS6.9AI score0.00766EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/10/27 12:56 a.m.3 views

SUSE CVE-2023-46137

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.9CVSS6.9AI score0.00766EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2023/10/26 3:59 p.m.42 views

CVE-2023-46137

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS6.5AI score0.00766EPSS
Exploits1References3
OSV
OSV
added 2023/10/25 9:15 p.m.56 views

GHSA-XC8X-VP79-P3WM twisted.web has disordered HTTP pipeline response

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

6.9CVSS5.4AI score0.00766EPSS
Exploits1References5
OSV
OSV
added 2023/10/25 9:15 p.m.1 views

DEBIAN-CVE-2023-46137

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS6.2AI score0.00766EPSS
Exploits1References1
OSV
OSV
added 2023/10/25 9:15 p.m.2 views

UBUNTU-CVE-2023-46137

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS6.4AI score0.00766EPSS
Exploits1References4
PyPA
PyPA
added 2023/10/25 9:15 p.m.5 views

PYSEC-2023-224

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS6.9AI score0.00766EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2023/10/25 9:15 p.m.34 views

Design/Logic Flaw

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5CVSS5.1AI score0.00766EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/25 12:0 a.m.3 views

PT-2023-8632 · Twisted +4 · Twisted +4

Name of the Vulnerable Software and Affected Versions: Twisted versions prior to 23.10.0rc1 Description: The issue is related to the inconsistent interpretation of HTTP requests in the twisted.web component of the Twisted framework. When sending multiple HTTP requests in one TCP packet, twisted.w...

8.3CVSS6.5AI score0.01176EPSS
Exploits2References62
Rows per page
Query Builder