python-scciclient is vulnerable to man-in-the-middle (MitM) attacks. The vulnerability exists because the scci_cmd
function of scci.py
does not properly verify the HTTPS connection certifications, allowing an attacker to intercept the connection.