Vulnerabilities > Twitter > Twitter KIT > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-10-07 CVE-2019-16263 Improper Certificate Validation vulnerability in Twitter KIT
The Twitter Kit framework through 3.4.2 for iOS does not properly validate the api.twitter.com SSL certificate.
network
twitter CWE-295
5.8
5.8
2019-05-06 CVE-2019-5431 Insufficient Verification of Data Authenticity vulnerability in Twitter KIT
This vulnerability was caused by an incomplete fix to CVE-2017-0911.
network
low complexity
twitter CWE-345
5.5
5.5
2018-02-09 CVE-2017-0911 Improper Authentication vulnerability in Twitter KIT
Twitter Kit for iOS versions 3.0 to 3.2.1 is vulnerable to a callback verification flaw in the "Login with Twitter" component allowing an attacker to provide alternate credentials.
network
low complexity
twitter CWE-287
5.5
5.5