3 matches found
CVE-2020-24393
TweetStream 2.6.1 uses the library eventmachine in an insecure way that does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle attack...
CVE-2020-24393
TweetStream 2.6.1 uses the library eventmachine in an insecure way that does not have TLS hostname validation. This allows an attacker to perform a man-in-the-middle attack...
TweetStream Trust Management Issue Vulnerability
Steve Agalloco TweetStream is an application from Steve Agallocoe Steve Agalloco, USA. Provides TweetStream provides simple Ruby access to Twitter's Streaming API. A vulnerability exists in TweetStream for trust management issues. The vulnerability stems from a failure to perform security checks ...