Atheme 7.0.0 Alpha 5

CPE Details

Atheme 7.0.0 Alpha 5
atheme
atheme
7.0.0
2021-05-25
15h14 +00:00
2021-05-25
15h36 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:atheme:atheme:7.0.0:alpha5:*:*:*:*:*:*

Informations

Vendor

atheme

Product

atheme

Version

7.0.0

Update

alpha5

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2014-9773 2016-06-13 17h00 +00:00 modules/chanserv/flags.c in Atheme before 7.2.7 allows remote attackers to modify the Anope FLAGS behavior by registering and dropping the (1) LIST, (2) CLEAR, or (3) MODIFY keyword nicks.
7.5
High
CVE-2016-4478 2016-06-13 17h00 +00:00 Buffer overflow in the xmlrpc_char_encode function in modules/transport/xmlrpc/xmlrpclib.c in Atheme before 7.2.7 allows remote attackers to cause a denial of service via vectors related to XMLRPC response encoding.
7.5
High
CVE-2012-1576 2012-10-01 18h00 +00:00 The myuser_delete function in libathemecore/account.c in Atheme 5.x before 5.2.7, 6.x before 6.0.10, and 7.x before 7.0.0-beta2 does not properly clean up CertFP entries when a user is deleted, which allows remote attackers to access a different user account or cause a denial of service (daemon crash) via a login as a deleted user.
6
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.