2 matches found
Astra Linux – Vulnerability in Twisted
In words.protocols.jabber.xmlstream in Twisted through version 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to intercept connections...
cloudpub-redis remote code execution vulnerability
cloudpub-redis is a package for installing redis server. A security vulnerability exists in cloudpub-redis that originates when a program downloads an executable file over an unencrypted HTTP connection. A remote attacker can exploit the vulnerability by intercepting the response and replacing th...