Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

Server Component

Twisted Web HTTP Server

Twisted is an event-based framework for internet applications supporting Python 3.5.

Official Site:

https://twistedmatrix.com/trac/

Severity Summary:

Critical: 2 High: 5 Medium: 4
Reference
Title
Severity
CVE-2020-10109
TwistedHTTP Request Splitting Vulnerability
Critical
CVE-2020-10108
TwistedHTTP Request Splitting Vulnerability
Critical
CVE-2014-7143
Twisted Web HTTP Server Improper Certificate Validation Vulnerability
High
CVE-2019-12855
Twisted Web HTTP Server Improper Certificate Validation Vulnerability
High
CVE-2022-21712
Twisted Web HTTP Server Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
High
CVE-2022-21716
Twisted Web HTTP Server Buffer Copy without Checking Size of Input (Classic Buffer Overflow) Vulnerability
High
CVE-2022-24801
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request Smuggling) Vulnerability
High
CVE-2019-12387
Twisted Web HTTP Server Improper Neutralization of Special Elements in Output Used by a Downstream Component (Injection) Vulnerability
Medium
CVE-2016-1000111
Twisted Web HTTP Server Direct Request (Forced Browsing) Vulnerability
Medium
CVE-2022-39348
Twisted Web HTTP Server Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2023-46137
Twisted Web HTTP Server Inconsistent Interpretation of HTTP Requests (HTTP Request/Response Smuggling) Vulnerability
Medium