Vulnerabilities > Twisted > High

DATE CVE VULNERABILITY TITLE RISK
2022-04-04 CVE-2022-24801 Twisted is an event-based framework for internet applications, supporting Python 3.6+.
network
high complexity
twisted debian fedoraproject oracle
8.1
8.1
2022-03-03 CVE-2022-21716 Allocation of Resources Without Limits or Throttling vulnerability in multiple products
Twisted is an event-based framework for internet applications, supporting Python 3.6+.
network
low complexity
twisted debian oracle fedoraproject CWE-770
7.5
7.5
2022-02-07 CVE-2022-21712 twisted is an event-driven networking engine written in Python.
network
low complexity
twisted debian fedoraproject
7.5
7.5
2019-11-12 CVE-2014-7143 Improper Certificate Validation vulnerability in Twisted 14.0.0
Python Twisted 14.0 trustRoot is not respected in HTTP client
network
low complexity
twisted CWE-295
7.5
7.5
2019-06-16 CVE-2019-12855 Improper Certificate Validation vulnerability in Twisted
In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
network
high complexity
twisted CWE-295
7.4
7.4