VDB

DEBIAN-CVE-2019-12855

DEBIAN-CVE-2019-12855 PUBLISHED CVSS 7.400000095367432 HIGH

In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.

Risk Scores

CVSS 3.0
7.400000095367432
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected Products

VendorProductVersions
Debiantwisted
Debian:14twisted0, 0, 0
Debian:13twisted0, 0, 0
Debian:11twisted0, 0, 0
Debian:12twisted0, 0, 0

Timeline

  • Jun 16, 2019 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›