vulnerability
CentOS Linux: CVE-2019-12387: Moderate: python-twisted-web security update (CESA-2020:1091)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jun 10, 2019 | Apr 1, 2020 | May 25, 2023 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jun 10, 2019
Added
Apr 1, 2020
Modified
May 25, 2023
Description
In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.
Solution
centos-upgrade-python-twisted-web
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.