CVE-2019-12855

Published June 16th, 2019

View on NVD ↗

CVSS v3

N/A

CVSS v2

5.8

MEDIUM

Affected

PROJECT

Description

In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.

twisted/twisted

Event-driven networking engine written in Python.

GitHub

5.97K