20 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-12855
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM...
RHEL 7 : python-twisted (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - python-twisted: XMPP support in words.protocols.jabber.xmlstream in Twisted does not verify certificates allowing f...
Ubuntu: Security Advisory (USN-4308-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-12855 affecting package python-twisted for versions less than 22.2.0-1
CVE-2019-12855 affecting package python-twisted for versions less than 22.2.0-1. An upgraded version of the package is available that resolves this issue...
Mageia: Security Advisory (MGASA-2019-0360)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2019-12855 affecting package python-twisted 19.2.1-5
CVE-2019-12855 affecting package python-twisted 19.2.1-5. An upgraded version of the package is available that resolves this issue...
Photon OS 2.0: Python PHSA-2020-2.0-0260
An update of the python package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-2.0-0260. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid13851...
Ubuntu: Security Advisory (USN-4308-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated python-twisted packages fix security vulnerabilities
Updated python-twisted packages fix security vulnerabilities: Improper sanitization of URIs or HTTP which could allow attackers to perform CRLF attacks CVE-2019-12387. In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS,...
CVE-2019-12855
In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections...
SUSE SLES12 Security Update : python-Twisted (SUSE-SU-2019:2453-1)
This update for python-Twisted fixes the following issues : Security issue fixed : CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
SUSE-SU-2019:2453-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: Security issue fixed: - CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461...
OPENSUSE-SU-2019:2110-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: Security issue fixed: - CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461. This update was imported from the SUSE:SLE-15:Update update project. This update was imported from the...
openSUSE: Security Advisory for python-Twisted (openSUSE-SU-2019:2068-1)
The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : python-Twisted (openSUSE-2019-2068)
This update for python-Twisted fixes the following issues : Security issue fixed : - CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461. This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The...
OPENSUSE-SU-2019:2068-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: Security issue fixed: - CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461. This update was imported from the SUSE:SLE-15:Update update project...
SUSE SLED15 / SLES15 Security Update : python-Twisted (SUSE-SU-2019:2212-1)
This update for python-Twisted fixes the following issues : Security issue fixed : CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security...
SUSE-SU-2019:2212-1 Security update for python-Twisted
This update for python-Twisted fixes the following issues: Security issue fixed: - CVE-2019-12855: Fixed TLS certificate verification to protecting against MITM attacks bsc1138461...
CVE-2019-12855
In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections...
CVE-2019-12855
CVE-2019-12855 affects Twisted up to version 19.2.1, where words.protocols.jabber.xmlstream did not verify TLS certificates for XMPP, enabling MITM. Exploitation status is not detailed in the provided documents. Remediation is to upgrade to a fixed python-twisted package version; multiple connect...