vulnerability
Red Hat: CVE-2019-12387: Moderate: python-twisted-web security update (RHSA-2020:1091)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:P/A:N) | Jun 10, 2019 | Apr 1, 2020 | Jul 9, 2025 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Published
Jun 10, 2019
Added
Apr 1, 2020
Modified
Jul 9, 2025
Description
In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.
Solutions
no-fix-redhat-rpm-packageredhat-upgrade-python-twisted-web
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.