CVE-2024-25421

An issue in Ignite Realtime Openfire v.4.9.0 and before allows a remote attacker to escalate privileges via the ROOMCACHE component...

CVE-2024-25421

CVE-2024-25421 affects Ignite Realtime Openfire (v4.9.0 and earlier) and enables privilege escalation via the ROOM_CACHE component. The root cause is insufficient validation/management of privileges within ROOM_CACHE, allowing a remote attacker to elevate privileges without user interaction. The ...