3 matches found
CVE-2022-47634
Isode M‑Link vulnerability CVE-2022-47634 affects Isode M-Link versions R16.2v1 through R17.0 prior to R17.0v24. The issue allows non‑administrative users to access and manipulate archive data via certain HTTP endpoints (LINK-2867). Remediation per PT-2023-15445 is to upgrade to version R17.0v24 ...
CVE-2012-4669
The CVE-2012-4669 entry concerns M-Link R14.6 (before R14.6v14) and R15.1 (before R15.1v10). The vulnerability arises because the XMPP Server Dialback verification does not verify that a request was made for a Dialback response, enabling remote XMPP servers to spoof domains via responses for doma...
CVE-2014-2742
Summary: CVE-2014-2742 affects Isode M-Link prior to version 16.0v7. The issue is a failure to properly restrict the processing of compressed XML elements, enabling a remote attacker to trigger a denial of service through a crafted XMPP stream (an “xmppbomb”). Affected software: Isode M-Link (bef...