-
CVSS Score
-Basic Information
CVE ID
-
GHSA ID
-
EPSS Score
-
CWE
-
Published
-
Updated
-
KEV Status
-
Technology
-
Technical Details
Vulnerability Intelligence
Miggo AI
Miggo AIMiggo AI| Package Name | Ecosystem | Vulnerable Versions | First Patched Version |
|---|---|---|---|
| twitch-tui | rust | < 2.4.1 | 2.4.1 |
RustRustMiggo AIRoot Cause AnalysisThe vulnerability stems from the insecure configuration in create_client_stream where TLS was explicitly disabled (use_tls=false) and a non-TLS port (6667) was used. The patch in commit 74d13dd directly addresses this by setting 'use_tls: Some(true)' and switching to port 6697 (standard TLS port for IRC). The CWE-311 mapping and advisory references confirm this function's configuration was the root cause.
Ongoing coverage of React2Shell