Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2015-2058

Опубликовано: 12 авг. 2015
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 6.5

Описание

c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.

РелизСтатусПримечание
artful

ignored

end of life
bionic

not-affected

2.3.4-1ubuntu2
cosmic

not-affected

2.3.4-1ubuntu2
devel

not-affected

2.3.4-1ubuntu2
disco

not-affected

2.3.4-1ubuntu2
esm-apps/bionic

not-affected

2.3.4-1ubuntu2
esm-apps/xenial

not-affected

2.3.4-1ubuntu2
esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was needed]
lucid

ignored

end of life
precise

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 65%
0.00483
Низкий

6.5 Medium

CVSS2

Связанные уязвимости

redhat логотип

CVE-2015-2058

redhat
почти 11 лет назад

c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.

nvd логотип

CVE-2015-2058

nvd
больше 10 лет назад

c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.

debian логотип

CVE-2015-2058

debian
больше 10 лет назад

c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates dat ...

github логотип

GHSA-qvcf-rgf7-ff3j

github
больше 3 лет назад

c2s/c2s.c in Jabber Open Source Server 2.3.2 and earlier truncates data without ensuring it remains valid UTF-8, which allows remote authenticated users to read system memory or possibly have other unspecified impact via a crafted JID.

EPSS

Процентиль: 65%
0.00483
Низкий

6.5 Medium

CVSS2