A directory traversal exists in the handling of the MXIT protocol in Pidgin. Rated low severity (CVSS 3.7), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.
Path Traversal
Pidgin
Ubuntu Linux
Debian Linux
NVD
CVSS 3.0
3.7
EPSS
2.0%
An information leak exists in the handling of the MXIT protocol in Pidgin. Rated low severity (CVSS 3.1), this vulnerability is remotely exploitable, no authentication required. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.
Information Disclosure
Buffer Overflow
Pidgin
Ubuntu Linux
Debian Linux
NVD
CVSS 3.0
3.1
EPSS
0.5%