CVE-2022-21712 in twistedالمعلومات

الملخص

بحسب MITRE • 08/02/2022

twisted is an event-driven networking engine written in Python. In affected versions twisted exposes cookies and authorization headers when following cross-origin redirects. This issue is present in the `twited.web.RedirectAgent` and `twisted.web. BrowserLikeRedirectAgent` functions. Users are advised to upgrade. There are no known workarounds.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

مسؤول

GitHub, Inc.

حجز

16/11/2021

إفشاء

08/02/2022

الاعتدال

تمت الموافقة

إدخال

VDB-192456

EPSS

0.01381

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!