In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
References
Configurations
History
07 Nov 2023, 03:03
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2019-06-16 12:29
Updated : 2023-12-10 12:59
NVD link : CVE-2019-12855
Mitre link : CVE-2019-12855
CVE.ORG link : CVE-2019-12855
JSON object : View
Products Affected
twistedmatrix
- twisted
CWE
CWE-295
Improper Certificate Validation