CVE-2013-2073

Transifex < 0.9 - Man-in-the-Middle Attack via Unvalidated X.509 Certificates

Title source: llm
STIX 2.1

Description

Transifex command-line client before 0.9 does not validate X.509 certificates, which allows man-in-the-middle attackers to spoof a Transifex server via an arbitrary certificate.

References (3)

Core 3

Scores

EPSS 0.0081
EPSS Percentile 52.7%

Details

CWE
CWE-20
Status published
Products (8)
transifex/transifex 0.1
transifex/transifex 0.2
transifex/transifex 0.3
transifex/transifex 0.4
transifex/transifex 0.5
transifex/transifex 0.6
transifex/transifex 0.7
transifex/transifex < 0.8
Published May 02, 2014
Tracked Since Feb 18, 2026