CVE-2022-21712 in twistedИнформация

Сводка

по MITRE • 08.02.2022

twisted is an event-driven networking engine written in Python. In affected versions twisted exposes cookies and authorization headers when following cross-origin redirects. This issue is present in the `twited.web.RedirectAgent` and `twisted.web. BrowserLikeRedirectAgent` functions. Users are advised to upgrade. There are no known workarounds.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Ответственный

GitHub, Inc.

Резервировать

16.11.2021

Раскрытие

08.02.2022

Модерация

принято

Вход

VDB-192456

EPSS

0.01381

KEV

Нет

Деятельности

Очень низкий

Источники

Do you know our Splunk app?

Download it now for free!