Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Twisted Web HTTP Server Improper Certificate Validation Vulnerability - CVE-2019-12855 - Vulnerability Database
Twisted Web HTTP Server

Twisted Web HTTP Server Improper Certificate Validation Vulnerability - CVE-2019-12855

High
Reference: CVE-2019-12855
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-12855
Title: Twisted Web HTTP Server Improper Certificate Validation Vulnerability
Overview:

In words.protocols.jabber.xmlstream in Twisted through 19.2.1 XMPP support did not verify certificates when used with TLS allowing an attacker to MITM connections.