Restkit allows man-in-the-middle attackers to spoof TLS servers by leveraging use of the ssl.wrap_socket
function in Python with the default CERTNONE value for the certreqs argument.
{ "nvd_published_at": "2017-08-09T18:29:00Z", "github_reviewed_at": "2023-08-03T21:27:58Z", "github_reviewed": true, "severity": "MODERATE", "cwe_ids": [ "CWE-295" ] }