CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2023/02/15 5:40 a.m.•1 views

SUSE CVE-2013-1769

A certain hashing algorithm in Telepathy Gabble 0.16.x before 0.16.5 and 0.17.x before 0.17.3 allows remote attackers to cause a denial of service NULL pointer dereference and crash via a crafted message...

5CVSS6.7AI score0.00887EPSS

Exploits0References4

OpenVAS•added 2022/01/28 12:0 a.m.•12 views

Mageia: Security Advisory (MGASA-2013-0170)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.00434EPSS

Exploits0References6

Tenable Nessus•added 2014/06/13 12:0 a.m.•24 views

openSUSE Security Update : telepathy-gabble (openSUSE-SU-2011:0303-1)

This update of telepathy-gabble is validating the origin of a google:jingleinfo update message now. Not validating the origin could be used to intercept calls. CVE-2011-1000: CVSS v2 Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N: Input Validation CWE-20 %NASLMINLEVEL 70300 C Tenable Network Security...

6.4CVSS5.3AI score0.01261EPSS

Tenable Nessus•added 2014/06/13 12:0 a.m.•17 views

openSUSE Security Update : telepathy-gabble (openSUSE-SU-2013:0518-1)

telepathy-gabble was updated to fix a remote denial of service attack using NULL ptr dereferences during hashing. CVE-2013-1769. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

5CVSS5.4AI score0.00887EPSS

Tenable Nessus•added 2014/06/13 12:0 a.m.•26 views

openSUSE Security Update : telepathy-gabble (openSUSE-SU-2013:1013-1)

This update of telepathy-gabble fixes a TLS bypass problem. Changes in telepathy-gabble : - Add telepathy-gabble-cve-2013-1431.patch bnc822586. This makes it respect the TLS-required flag on legacy Jabber servers. Identified as CVE-2013-1431. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. T...

6.8CVSS5.3AI score0.00434EPSS

OSV•added 2014/01/21 6:55 p.m.•1 views

CVE-2013-1769

6.6AI score

Prion•added 2014/01/21 6:55 p.m.•6 views

Null pointer dereference

5CVSS6.8AI score0.00887EPSS

Cvelist•added 2014/01/21 6:0 p.m.•13 views

CVE-2013-1769

6.1AI score0.00887EPSS

CVE•added 2014/01/21 6:0 p.m.•55 views

CVE-2013-1769

The CVE affects Telepathy Gabble: versions 0.16.x before 0.16.5 and 0.17.x before 0.17.3 are vulnerable due to a hashing algorithm that can trigger a NULL pointer dereference, causing a remote denial of service (crash). No exploitation details are provided beyond this, but the impact is a crash/D...

5CVSS6.3AI score0.00887EPSS

Debian CVE•added 2014/01/21 6:0 p.m.•16 views

CVE-2013-1769

Removed by vendor...

5CVSS6.7AI score0.00887EPSS

Exploits0

NVD•added 2013/09/23 8:55 p.m.•6 views

CVE-2013-1431

6.8CVSS6.3AI score0.00434EPSS

Prion•added 2013/09/23 8:55 p.m.•12 views

Authentication flaw

6.8CVSS7AI score0.00434EPSS

Cvelist•added 2013/09/23 8:0 p.m.•17 views

CVE-2013-1431

6.2AI score0.00434EPSS

CVE•added 2013/09/23 8:0 p.m.•64 views

CVE-2013-1431

CVE-2013-1431 affects the Wocky submodule in telepathy-gabble (Gabble) prior to 0.16.6 and 0.17.x prior to 0.17.4 when connecting to legacy Jabber servers. The flaw allows bypassing WockyConnector:tls-required and TLS verification, enabling MITM attacks. Fixes are provided in patches and updated ...

6.8CVSS6.3AI score0.00434EPSS