7.7 High
AI Score
Confidence
High
3.5 Low
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:N/I:N/A:P
0.013 Low
EPSS
Percentile
85.9%
Format string vulnerability in the logging function in the IM Server (aka IMserve or IMserver) in Ipswitch Instant Messaging (IM) 2.0.8.1 and earlier allows remote authenticated users to cause a denial of service (daemon crash) and possibly have unspecified other impact via format string specifiers in an IP address field.
CPE | Name | Operator | Version |
---|---|---|---|
ipswitch:imserver | ipswitch imserver | le | 2.0.8.1 |
ipswitch:instant_messaging | ipswitch instant messaging | le | 2.0.8.1 |