{"id":"CVE-2012-5825","details":"Tweepy does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate, related to use of the Python httplib library.","aliases":["GHSA-pwx5-xg7g-wpc5","PYSEC-2012-17"],"modified":"2026-04-10T03:42:33.069114Z","published":"2012-11-04T22:55:04Z","references":[{"type":"EVIDENCE","url":"http://www.cs.utexas.edu/~shmat/shmat_ccs12.pdf"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/79831"}],"schema_version":"1.7.5"}