pkg:PyPI/tornado

All known vulnerabilities

• HIGH7.5CVE-2026-31958Tornado is vulnerable to DoS due to too many multipart parts
  from 0, < 6.5.5
• HIGH7.5CVE-2026-31958Tornado is vulnerable to DoS due to too many multipart parts
  from 0, < 6.5.5
• HIGH7.5CVE-2025-47287python-tornado - security update
  from 0, < 6.5
• HIGH7.5Tornado has an HTTP cookie parsing DoS vulnerability
  from 0, < 6.4.2
• HIGH7.5Tornado CRLF injection vulnerability
  from 0, < 2.2.1
• HIGH7.5Tornado CRLF injection vulnerability
  from 0, < 2.2.1
• HIGH7.2Tornado has cookie attribute injection via .RequestHandler.set_cookie
  from 0, < 6.5.5
• MEDIUM6.5python-tornado - security update
  from 0, < 1c36307463b1e8affae100bf9386948e6c1b2308 | from 0, < 3.2.2
• MEDIUM6.5python-tornado - security update
  from 0, < 3.2.2
• MEDIUM6.1python-tornado - security update
  from 0, < 6.3.2
• MEDIUM6.1python-tornado - security update
  from 0, < 6.3.2
• LOW3.7Tornado has out-of-bounds memory access via C extension
  from 0, < 6.5.6