vulnerability

FreeBSD: VID-93db4f92-9997-4f4f-8614-3963d9e2b0ec (CVE-2022-45197): py-slixmpp -- incomplete SSL certificate validation

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:C/A:N)	Apr 9, 2023	Apr 14, 2023	Dec 10, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:C/A:N)

Published

Apr 9, 2023

Added

Apr 14, 2023

Modified

Dec 10, 2025

Description

Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp.

Solutions

freebsd-upgrade-package-py37-slixmppfreebsd-upgrade-package-py38-slixmppfreebsd-upgrade-package-py39-slixmppfreebsd-upgrade-package-py310-slixmppfreebsd-upgrade-package-py311-slixmpp

References

CVE-2022-45197
https://attackerkb.com/topics/CVE-2022-45197
CWE-295

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today