Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Twisted Web HTTP Server Improper Certificate Validation Vulnerability - CVE-2019-12855 - Vulnerability Database
Twisted Web HTTP Server

Twisted Web HTTP Server Improper Certificate Validation Vulnerability - CVE-2019-12855

High
Reference: CVE-2019-12855
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2019-12855
Title: Twisted Web HTTP Server Improper Certificate Validation Vulnerability
Overview:

In words.protocols.jabber.xmlstream in Twisted through 19.2.1 XMPP support did not verify certificates when used with TLS allowing an attacker to MITM connections.