Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-24766

Malware in sbrugna...

9.9CVSS8.6AI score0.61862EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-27927

Malicious code in bioql PyPI...

8.1CVSS8AI score0.04033EPSS
Exploits0References1
CNVD
CNVD
added 2022/10/11 12:0 a.m.362 views

Cisco Jabber Input Validation Error Vulnerability

Cisco Jabber is a unified communications client solution from Cisco. An input validation error vulnerability exists in Cisco Jabber Client Software versions prior to 14.1.3, which stems from improper handling of nested XMPP messages in requests sent to Cisco Jabber Client Software, and could be...

4.3CVSS1.7AI score0.00887EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2022/06/06 12:0 a.m.8 views

The vulnerability of clients for conducting real-time audio and video conferences via Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows allows a hacker to perform spoofing attacks due to improper data analysis of XML messages in XMPP messages.

The vulnerability of clients for conducting real-time audio and video conferences using Zoom Client for Meetings on Android, iOS, Linux, macOS, and Windows is related to improper analysis of XML data in XMPP messages. Exploiting this vulnerability allows a malicious actor to perform a spoofing...

8.5CVSS7.7AI score0.04033EPSS
Exploits0References4Affected Software1
hivepro
hivepro
added 2022/05/30 11:59 a.m.9 views

New Zoom vulnerabilities can compromise user devices with a single message

Threat Level Vulnerability Report For a detailed advisory, download the pdf file here Summary Zoom has addressed four security flaws that, one of them if exploited, can compromise a user via chat by sending specially crafted Extensible Messaging and Presence Protocol XMPP messages and executing...

2.6AI score
Exploits0
NVD
NVD
added 2022/05/18 4:15 p.m.17 views

CVE-2022-22784

The Zoom Client for Meetings for Android, iOS, Linux, MacOS, and Windows before version 5.10.0 failed to properly parse XML stanzas in XMPP messages. This can allow a malicious user to break out of the current XMPP message context and create a new message context to have the receiving users clien...

8.1CVSS0.04033EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/05/18 12:0 a.m.3 views

Zoom Client 安全漏洞

Zoom Client is a video conferencing client application from Zoom Inc. that supports multiple platforms. A security vulnerability exists in Zoom Client for Meetings prior to version 5.10.0 that stems from an inability to properly parse XML in XMPP messages, which can be exploited by an attacker to...

8.1CVSS7.9AI score0.04033EPSS
Exploits0References4
CNVD
CNVD
added 2021/03/25 12:0 a.m.13 views

Cisco Jabber Code Execution Vulnerability

Cisco Jabber is a web conferencing and instant messaging application that allows users to send messages over the Extensible Messaging and Status Protocol XMPP. Cisco Jabber suffers from a code execution vulnerability that stems from an email content validation error. An attacker could exploit thi...

9.9CVSS7.6AI score0.01382EPSS
Exploits0References1
CNVD
CNVD
added 2021/03/25 12:0 a.m.13 views

Cisco Jabber Information Disclosure Vulnerability (CNVD-2021-22911)

Cisco Jabber is a web conferencing and instant messaging application that allows users to send messages over the Extensible Messaging and Status Protocol XMPP. Cisco Jabber has an information disclosure vulnerability that can be exploited by an attacker by sending a crafted XMPP message to the...

9.9CVSS6.3AI score0.00958EPSS
Exploits0References1
OSV
OSV
added 2020/09/04 3:15 a.m.5 views

CVE-2020-3495

A vulnerability in Cisco Jabber for Windows could allow an authenticated, remote attacker to execute arbitrary code. The vulnerability is due to improper validation of message contents. An attacker could exploit this vulnerability by sending specially crafted Extensible Messaging and Presence...

8.8CVSS6.2AI score0.61862EPSS
Exploits0References1
OSV
OSV
added 2014/10/28 1:50 p.m.2 views

USN-2390-1 pidgin vulnerabilities

Jacob Appelbaum and an anonymous person discovered that Pidgin incorrectly handled certificate validation. A remote attacker could exploit this to perform a machine-in-the-middle attack to view sensitive information or alter encrypted communications. CVE-2014-3694 Yves Younan and Richard Johnson...

6.4CVSS6.9AI score0.03776EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2014/02/05 5:42 p.m.7 views

pidgin: DoS when handling timestamps in the XMPP plugin

Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service application crash via a crafted timestamp value in an XMPP message...

5CVSS5.9AI score0.03913EPSS
Exploits0References5
Rows per page
Query Builder