CVE-2020-24392 – In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to per …

19 February 2021

Vuln ID: CVE-2020-24392

Published: 2021-02-19 23:15:12Z

Description: In voloko twitter-stream 0.1.10, missing TLS hostname validation allows an attacker to perform a man-in-the-middle attack against users of the library (because eventmachine is misused).

Source: NVD.NIST.GOV

Date:

19 February 2021

Categorie(s):

NVD

Tag(s):

NVD

Australia’s spies and cops want ‘accountable encryption’ – aka access to backdoors25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka backdoors25 April 2024
Australia’s spies and cops want ‘accountable encryption’ – aka backdooring encryption25 April 2024
Rubrik sets IPO price at $32 per share on $5.6B valuation ahead of NYSE debut25 April 2024
Governments issue alerts after ‘sophisticated’ state-backed actor found exploiting flaws in Cisco security boxes24 April 2024