2 matches found
EUVD-2022-34666
Malicious code in bioql PyPI...
python: failure to validate certificates in the HTTP client with TLS (PEP 476)
The Python standard library HTTP client modules such as httplib or urllib did not perform verification of TLS/SSL certificates when connecting to HTTPS servers. A man-in-the-middle attacker could use this flaw to hijack connections and eavesdrop or modify transferred data...