CVE-2013-6396: Missing SSL certificate check
(updated )
Python Swift client fails to properly check certificates during the establishment of HTTPS connections. A remote attacker with access over segments of the network between client and server could potentially set up a man-in-the-middle attack and access the contents of the Swift client’s communication with the server, including any used credentials.
References
Detect and mitigate CVE-2013-6396 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →