Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:8 p.m.8 views

CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.9CVSS6.6AI score0.00884EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-24392

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in- the-middle attack against users of the library because...

5.9CVSS6.2AI score0.00884EPSS
Exploits1References3
NVD
NVD
added 2021/02/19 11:15 p.m.14 views

CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.9CVSS0.00884EPSS
Exploits1References2
OSV
OSV
added 2021/02/19 11:15 p.m.9 views

CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.9CVSS6.5AI score
Exploits0References2
OSV
OSV
added 2021/02/19 11:15 p.m.1 views

DEBIAN-CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.9CVSS5.9AI score0.00884EPSS
Exploits1References1
OSV
OSV
added 2021/02/19 11:15 p.m.7 views

UBUNTU-CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.9CVSS5.8AI score0.00884EPSS
Exploits1References3
CVE
CVE
added 2021/02/19 10:42 p.m.123 views

CVE-2020-24392

CVE-2020-24392 concerns missing TLS hostname validation in voloko twitter-stream (versions 0.1.10 and 0.1.16 in various advisories), caused by misused eventmachine. This allows a man-in-the-middle attack against users of the library. The vulnerability is described across multiple sources (Red Hat...

5.9CVSS5.7AI score0.00884EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/02/19 10:42 p.m.19 views

CVE-2020-24392

In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library because eventmachine is misused...

5.5AI score0.00884EPSS
Exploits1References2
Rows per page
Query Builder