Vulnerabilities (CVE)

Filtered by vendor Jabber2 Subscribe
Filtered by product Jabberd2
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-3525 2 Jabber2, Jabberd2 2 Jabberd2, Jabberd2 2024-11-21 5.8 MEDIUM N/A
s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.