Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2021-64479
HistoryAug 03, 2021 - 12:00 a.m.

Prosodical Thoughts Prosody Information Disclosure Vulnerability

2021-08-0300:00:00
China National Vulnerability Database
www.cnvd.org.cn
17
prosodical thoughts prosody
xmpp communication server
information disclosure
vulnerability
remote attackers
sensitive information
muc.lib.lua
prosody versions 0.11.0 through 0.11.9
common configurations
open source
cnvd

EPSS

0.003

Percentile

71.0%

Prosodical Thoughts Prosody is an open source application of Prosodical Thoughts. A modern XMPP communication server. Prosodical Thoughts Prosody is vulnerable to an information disclosure vulnerability that originates in muc.lib.lua in Prosody versions 0.11.0 through 0.11.9, which can be exploited by remote attackers to obtain sensitive information in some common configurations.