Skip to main content

Profanity

2 CVEs product

Monthly

CVE-2022-40769 HIGH This Week

profanity through 1.60 has only four billion possible RNG initializations. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Profanity
NVD GitHub
CVSS 3.1
7.5
EPSS
1.0%
CVE-2017-5592 MEDIUM POC PATCH This Month

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Information Disclosure Profanity
NVD GitHub
CVSS 3.1
5.9
EPSS
0.4%
EPSS 1% CVSS 7.5
HIGH This Week

profanity through 1.60 has only four billion possible RNG initializations. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Profanity
NVD GitHub
EPSS 0% CVSS 5.9
MEDIUM POC PATCH This Month

An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Information Disclosure Profanity
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy