Buffer overflow in Twisted
CVE-2022-21716
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Prior to 22.2.0, Twisted SSH client and server implement is able to accept an infinite amount of data for the peer's SSH version identifier. This ends u…
Vulnerability class: Buffer Overflow
EPSS: 0.037 (88.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.
Affected products
- Twisted — versions < 22.2.0
Weakness classification (CWE)
Public proof-of-concept exploits
References
- github.com/twisted/twisted/security/advisories/GHSA-rv6r-3f5q-9rgx
- github.com/twisted/twisted/commit/89c395ee794e85a9657b112c4351417850330ef9
- github.com/twisted/twisted/releases/tag/twisted-22.2.0
- twistedmatrix.com/trac/ticket/10284
- [debian-lts-announce] 20220308 [SECURITY] [DLA 2938-1] twisted security update (mailing-list)
- www.oracle.com/security-alerts/cpuapr2022.html
- FEDORA-2022-71b66d4747 (vendor-advisory)
- FEDORA-2022-9a489fa494 (vendor-advisory)
- GLSA-202301-02 (vendor-advisory)
Frequently asked questions
- What is CVE-2022-21716?
- CVE-2022-21716 is a high-severity vulnerability in Twisted, classified under Buffer Copy without Checking Size of Input (Classic Buffer Overflow). CVSS score: 7.5/10. Published 2022-03-03.
- How severe is CVE-2022-21716?
- High severity. CVSS v3 base score is 7.5 out of 10.
- Is CVE-2022-21716 known to be exploited?
- 4 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.