Jabber2 CVE - OpenCVE

Filtered by vendor Jabber2 Subscribe

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2012-3525	2 Jabber2, Jabberd2	2 Jabberd2, Jabberd2	2023-12-10	5.8 MEDIUM	N/A
s2s/out.c in jabberd2 2.2.16 and earlier does not verify that a request was made for an XMPP Server Dialback response, which allows remote XMPP servers to spoof domains via a (1) Verify Response or (2) Authorization Response.

Vulnerabilities (CVE)