Skip to main content

Bitlbee

3 CVEs product

Monthly

CVE-2017-5668 CRITICAL PATCH Act Now

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service RCE Bitlbee Bitlbee Libpurple
NVD GitHub
CVSS 3.0
9.8
EPSS
2.4%
CVE-2016-10189 HIGH PATCH This Week

BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service RCE Bitlbee Bitlbee Libpurple
NVD GitHub
CVSS 3.0
7.5
EPSS
3.2%
CVE-2016-10188 CRITICAL PATCH Act Now

Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code by causing a file transfer connection to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Denial Of Service Memory Corruption Use After Free RCE Bitlbee
NVD
CVSS 3.0
9.8
EPSS
1.5%
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

bitlbee-libpurple before 3.5.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service RCE +2
NVD GitHub
EPSS 3% CVSS 7.5
HIGH PATCH This Week

BitlBee before 3.5 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) and possibly execute arbitrary code via a file transfer request for a contact that is not. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Null Pointer Dereference Denial Of Service RCE +2
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

Use-after-free vulnerability in bitlbee-libpurple before 3.5 allows remote servers to cause a denial of service (crash) or possibly execute arbitrary code by causing a file transfer connection to. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Use After Free vulnerability could allow attackers to access freed memory to execute arbitrary code or crash the application.

Denial Of Service Memory Corruption Use After Free +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy