V
Scaner-VS
vulnerability catalog · v4.2
Home
Catalog
References
Reference catalogs
Sources
Upstream vulnerability databases
CWE
Common Weakness Enumeration
CAPEC
Attack pattern catalog
ATT&CK
Adversary tactics & techniques
Mitigations
ATT&CK Mitigations (M-codes)
Products
Affected products & software
Vendors
Vendors & manufacturers
Docs
EN
RU
Home
Catalog
Sources
CWE
CAPEC
ATT&CK
Mitigations
Products
Vendors
Docs
← Back to List
Xithrius
›
Application
nvd
Twitch-tui
Vulnerabilities
1
Known exploited
0
Max CVSS
7.5
Top EPSS
0.00427
Severity breakdown
Critical
0
High
1
Medium
0
Low
0
Affected version ranges
≤ 2.4.0
Also matched as (raw):
twitch-tui
Top vulnerabilities
CVE-2023-38688
twitch-tui provides Twitch chat in a terminal. Prior to version 2.4.1, the connection is not using TLS for communication. In the configuration of the irc connection, the software disables TLS, which makes all communication to Twitch IRC servers unencrypted. As a result, communication, including auth tokens, can be sniffed. Version 2.4.1 has a patch for this issue.
View vendor →
Open in catalog with product filter →