HIGH
twisted
CVE published 2026-05-13
CVE-2026-42304
CVE-2026-42304 is a high-severity Denial of Service (DoS) vulnerability in Twisted, an event-based Python framework for internet applications. The flaw exists in the twisted.names module prior to version 26.4.0rc2 and stems from resource exhaustion during DNS name decompression. A remote, unauthenticated attacker can exploit this by sending a crafted TCP DNS packet containing deeply chained compression po [truncated]