In Tornado before 6.5.5, cookie attribute injection could occur because the domain, path, and samesite arguments to .RequestHandler.set_cookie were not checked for crafted characters.
6.4.0-1ubuntu0.56.4.2-3ubuntu0.36.4.2-36.5.2-36.5.4-0.14.2.1-1ubuntu3.1+esm34.5.3-1ubuntu0.2+esm36.0.3+really5.1.1-3ubuntu0.1~esm56.1.0-3ubuntu0.1~esm5Exploitability
AV:NAC:LPR:NUI:NScope
S:CImpact
C:LI:LA:NCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N