VDB
DEBIAN-CVE-2019-12855
DEBIAN-CVE-2019-12855
PUBLISHED
CVSS 7.400000095367432 HIGH
In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.
Risk Scores
CVSS 3.0
7.400000095367432
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | twisted | |
| Debian:14 | twisted | 0, 0, 0 |
| Debian:13 | twisted | 0, 0, 0 |
| Debian:11 | twisted | 0, 0, 0 |
| Debian:12 | twisted | 0, 0, 0 |
Timeline
- Jun 16, 2019 CVE Published
- Apr 28, 2026 CVE Updated