CVE-2011-2531

EPSS 0.77%
Published 22.06.2011 21:55:02
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

Prosody 0.8.x before 0.8.1, when MySQL is used, assigns an incorrect data type to the value column in certain tables, which might allow remote attackers to cause a denial of service (data truncation) by sending a large amount of data.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Prosody ≫ Prosody Version0.8.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.77%	0.711

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:N/A:P

http://blog.prosody.im/prosody-0-8-1-released/

Patch

http://prosody.im/doc/release/0.8.1

Patch

http://hg.prosody.im/0.8/rev/c806a599224a

Patch

http://hg.prosody.im/0.8/rev/d2406f0ce8a5

Patch

https://nvd.nist.gov/vuln/detail/CVE-2011-2531

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-2531

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-2531

EUVD