Количество 2
Количество 2
CVE-2009-1595
больше 16 лет назад
The jabber:iq:auth implementation in IQAuthHandler.java in Ignite Realtime Openfire before 3.6.4 allows remote authenticated users to change the passwords of arbitrary accounts via a modified username element in a passwd_change action.
CVSS2: 4
EPSS: Низкий
GHSA-r62w-x9pp-jrqp
почти 4 года назад
Ignite Realtime Openfire Allows Users to Change Passwords of Arbitrary Accounts
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2009-1595 The jabber:iq:auth implementation in IQAuthHandler.java in Ignite Realtime Openfire before 3.6.4 allows remote authenticated users to change the passwords of arbitrary accounts via a modified username element in a passwd_change action. | CVSS2: 4 | 8% Низкий | больше 16 лет назад |
| GHSA-r62w-x9pp-jrqp Ignite Realtime Openfire Allows Users to Change Passwords of Arbitrary Accounts | 8% Низкий | почти 4 года назад |
Уязвимостей на страницу
20