CVE-2017-10807

Опубликовано: 04 июл. 2017

Источник: ubuntu

Приоритет: medium

CVSS2: 7.5

CVSS3: 9.8

Описание

JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate using SASL ANONYMOUS, even when the sasl.anonymous c2s.xml option is not enabled.

Релиз	Статус	Примечание
artful	not-affected	2.6.1-1
bionic	not-affected	2.6.1-1
cosmic	not-affected	2.6.1-1
devel	not-affected	2.6.1-1
disco	not-affected	2.6.1-1
eoan	not-affected	2.6.1-1
esm-apps/bionic	not-affected	2.6.1-1
esm-apps/focal	not-affected	2.6.1-1
esm-apps/jammy	not-affected	2.6.1-1
esm-apps/noble	not-affected	2.6.1-1

Показывать по

Ссылки на источники

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2017-10807

CVSS3: 6.5

redhat

больше 8 лет назад

JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate using SASL ANONYMOUS, even when the sasl.anonymous c2s.xml option is not enabled.

CVE-2017-10807

CVSS3: 9.8

nvd

больше 8 лет назад

JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate using SASL ANONYMOUS, even when the sasl.anonymous c2s.xml option is not enabled.

CVE-2017-10807

CVSS3: 9.8

debian

больше 8 лет назад

JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate ...

GHSA-cv95-3vq8-8f64

CVSS3: 9.8

github

больше 3 лет назад

JabberD 2.x (aka jabberd2) before 2.6.1 allows anyone to authenticate using SASL ANONYMOUS, even when the sasl.anonymous c2s.xml option is not enabled.

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2017-10807

Описание

Пакет jabberd2

Ссылки на источники

Связанные уязвимости