PT-2018-3492 · Twisted Matrix Laboratories +3 · Twisted +3

Name of the Vulnerable Software and Affected Versions: Twisted versions through 19.2.1 Description: The issue is related to the XMPP support in the words.protocols.jabber.xmlstream module of the Twisted network framework, which did not verify certificates when used with TLS. This allows an attack...