{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-41810", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2024-07-22T13:57:37.136Z", "datePublished": "2024-07-29T15:41:40.289Z", "dateUpdated": "2024-08-02T04:46:52.679Z"}, "containers": {"cna": {"title": "HTML injection in HTTP redirect body", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-80", "lang": "en", "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2"}, {"name": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "tags": ["x_refsource_MISC"], "url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33"}], "affected": [{"vendor": "twisted", "product": "twisted", "versions": [{"version": "<= 24.3.0", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-07-29T15:41:40.289Z"}, "descriptions": [{"lang": "en", "value": "Twisted is an event-based framework for internet applications, supporting Python 3.6+. The `twisted.web.util.redirectTo` function contains an HTML injection vulnerability. If application code allows an attacker to control the redirect URL this vulnerability may result in Reflected Cross-Site Scripting (XSS) in the redirect response HTML body. This vulnerability is fixed in 24.7.0rc1."}], "source": {"advisory": "GHSA-cf56-g6w6-pqq2", "discovery": "UNKNOWN"}}, "adp": [{"affected": [{"vendor": "twistedmatrix", "product": "twisted", "cpes": ["cpe:2.3:a:twistedmatrix:twisted:*:*:*:*:*:*:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "24.3.0", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-07-29T16:39:25.608484Z", "id": "CVE-2024-41810", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-29T16:42:19.291Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:46:52.679Z"}, "title": "CVE Program Container", "references": [{"name": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2"}, {"name": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "tags": ["x_refsource_MISC", "x_transferred"], "url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "name": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "name": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T04:46:52.679Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-41810", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-07-29T16:39:25.608484Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:twistedmatrix:twisted:*:*:*:*:*:*:*:*"], "vendor": "twistedmatrix", "product": "twisted", "versions": [{"status": "affected", "version": "0", "versionType": "custom", "lessThanOrEqual": "24.3.0"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-29T16:42:11.847Z"}}], "cna": {"title": "HTML injection in HTTP redirect body", "source": {"advisory": "GHSA-cf56-g6w6-pqq2", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "twisted", "product": "twisted", "versions": [{"status": "affected", "version": "<= 24.3.0"}]}], "references": [{"url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "name": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "name": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "Twisted is an event-based framework for internet applications, supporting Python 3.6+. The `twisted.web.util.redirectTo` function contains an HTML injection vulnerability. If application code allows an attacker to control the redirect URL this vulnerability may result in Reflected Cross-Site Scripting (XSS) in the redirect response HTML body. This vulnerability is fixed in 24.7.0rc1."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}, {"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-80", "description": "CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2024-07-29T15:41:40.289Z"}}}, "cveMetadata": {"cveId": "CVE-2024-41810", "state": "PUBLISHED", "dateUpdated": "2024-08-02T04:46:52.679Z", "dateReserved": "2024-07-22T13:57:37.136Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2024-07-29T15:41:40.289Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*", "matchCriteriaId": "7A8C409F-08B3-4990-AF07-2BEE13BF7581", "versionEndIncluding": "24.3.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Twisted is an event-based framework for internet applications, supporting Python 3.6+. The `twisted.web.util.redirectTo` function contains an HTML injection vulnerability. If application code allows an attacker to control the redirect URL this vulnerability may result in Reflected Cross-Site Scripting (XSS) in the redirect response HTML body. This vulnerability is fixed in 24.7.0rc1."}, {"lang": "es", "value": " Twisted es un framework basado en eventos para aplicaciones de Internet, compatible con Python 3.6+. La funci\u00f3n `twisted.web.util.redirectTo` contiene una vulnerabilidad de inyecci\u00f3n de HTML. Si el c\u00f3digo de la aplicaci\u00f3n permite a un atacante controlar la URL de redireccionamiento, esta vulnerabilidad puede provocar Cross Site Scripting reflejado (XSS) en el cuerpo HTML de la respuesta de redireccionamiento. Esta vulnerabilidad se soluciona en 24.7.0rc1."}], "id": "CVE-2024-41810", "lastModified": "2024-11-21T09:33:07.197", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2024-07-29T16:15:05.133", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33"}, {"source": "security-advisories@github.com", "tags": ["Vendor Advisory"], "url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "https://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}, {"lang": "en", "value": "CWE-80"}], "source": "security-advisories@github.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"affected_release": [{"advisory": "RHSA-2024:7312", "cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el8", "package": "automation-controller-0:4.5.12-1.el8ap", "product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8", "release_date": "2024-09-27T00:00:00Z"}, {"advisory": "RHSA-2024:7312", "cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el9", "package": "automation-controller-0:4.5.12-1.el9ap", "product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9", "release_date": "2024-09-27T00:00:00Z"}], "bugzilla": {"description": "python-twisted: Reflected XSS via HTML Injection in Redirect Response", "id": "2300497", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300497"}, "csaw": false, "cvss3": {"cvss3_base_score": "4.2", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N", "status": "verified"}, "cwe": "(CWE-79|CWE-80)", "details": ["Twisted is an event-based framework for internet applications, supporting Python 3.6+. The `twisted.web.util.redirectTo` function contains an HTML injection vulnerability. If application code allows an attacker to control the redirect URL this vulnerability may result in Reflected Cross-Site Scripting (XSS) in the redirect response HTML body. This vulnerability is fixed in 24.7.0rc1.", "A Cross-site scripting (XSS) vulnerability exists in Python-Twisted in the twisted.web.util.redirectTo function. This flaw allows an attacker to control the redirect URL, leading to reflected XSS in the HTML body of the redirect response. If exploited, a remote attacker could inject malicious HTML, causing unauthorized JavaScript execution within the victim's browser session. This issue can result in unauthorized access to the victim\u2019s account and data or allow the attacker to perform operations on behalf of the victim."], "name": "CVE-2024-41810", "package_state": [{"cpe": "cpe:/a:redhat:ansible_automation_platform", "fix_state": "Will not fix", "package_name": "ansible-tower", "product_name": "Red Hat Ansible Automation Platform 1.2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "python3x-twisted", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/a:redhat:ansible_automation_platform:2", "fix_state": "Affected", "package_name": "python-twisted", "product_name": "Red Hat Ansible Automation Platform 2"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "python-twisted", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Out of support scope", "package_name": "python-twisted-web", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Out of support scope", "package_name": "python-twisted-web", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/a:redhat:openstack:16.1", "fix_state": "Out of support scope", "package_name": "python-twisted", "product_name": "Red Hat OpenStack Platform 16.1"}, {"cpe": "cpe:/a:redhat:openstack:16.2", "fix_state": "Will not fix", "package_name": "python-twisted", "product_name": "Red Hat OpenStack Platform 16.2"}, {"cpe": "cpe:/a:redhat:storage:3", "fix_state": "Affected", "package_name": "python-carbon", "product_name": "Red Hat Storage 3"}], "public_date": "2024-07-29T16:24:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2024-41810\nhttps://nvd.nist.gov/vuln/detail/CVE-2024-41810\nhttps://github.com/twisted/twisted/commit/046a164f89a0f08d3239ecebd750360f8914df33\nhttps://github.com/twisted/twisted/security/advisories/GHSA-cf56-g6w6-pqq2"], "statement": "The vulnerability is exploitable only in Firefox. All other tested browsers will display an error message to the user and will not render the HTML body.", "threat_severity": "Moderate"}