{"id":"PYSEC-2017-85","details":"txAWS (all current versions) fail to perform complete certificate verification resulting in vulnerability to MitM attacks and information disclosure.","aliases":["CVE-2017-1000007","GHSA-cggm-52qp-wvw7"],"modified":"2024-02-23T21:13:31.259131Z","published":"2017-07-17T13:18:00Z","references":[{"type":"REPORT","url":"https://github.com/twisted/txaws/issues/24"}],"affected":[{"package":{"name":"txaws","ecosystem":"PyPI","purl":"pkg:pypi/txaws"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0.0.1"}]}],"versions":["0.0.1","0.2","0.2.1","0.2.3","0.2.3.1","0.3.0","0.3.0.dev0","0.4.0","0.5.0"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/txaws/PYSEC-2017-85.yaml"}}],"schema_version":"1.7.3"}