Twisted Web HTTP Server Improper Certificate Validation Vulnerability - CVE-2019-12855
In words.protocols.jabber.xmlstream in Twisted through 19.2.1 XMPP support did not verify certificates when used with TLS allowing an attacker to MITM connections.