{
  "version": "1",
  "package": [
    {
      "name": "python3-twisted",
      "layer": "meta-python",
      "version": "24.3.0",
      "products": [
        {
          "product": "twisted",
          "cvesInRecord": "No"
        }
      ],
      "issue": [
        {
          "id": "CVE-2024-41671",
          "summary": "Twisted is an event-based framework for internet applications, supporting Python 3.6+. The HTTP 1.0 and 1.1 server provided by twisted.web could process pipelined HTTP requests out-of-order, possibly resulting in information disclosure. This vulnerability is fixed in 24.7.0rc1.",
          "scorev2": "0.0",
          "scorev3": "8.3",
          "vector": "NETWORK",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
          "status": "Patched",
          "link": "https://nvd.nist.gov/vuln/detail/CVE-2024-41671"
        }
      ]
    }
  ]
}