4.3
CVE-2013-6169
- EPSS 1.6%
- Veröffentlicht 17.10.2013 23:55:04
- Zuletzt bearbeitet 29.04.2026 01:13:23
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Process-one ≫ Ejabberd Version <= 2.1.12
Process-one ≫ Ejabberd Version0.9
Process-one ≫ Ejabberd Version0.9.1
Process-one ≫ Ejabberd Version0.9.8
Process-one ≫ Ejabberd Version1.0.0
Process-one ≫ Ejabberd Version1.1.0
Process-one ≫ Ejabberd Version1.1.1
Process-one ≫ Ejabberd Version1.1.1.0
Process-one ≫ Ejabberd Version1.1.1.1
Process-one ≫ Ejabberd Version1.1.2
Process-one ≫ Ejabberd Version1.1.3
Process-one ≫ Ejabberd Version1.1.14
Process-one ≫ Ejabberd Version2.0.0
Process-one ≫ Ejabberd Version2.0.0 Updatebeta1
Process-one ≫ Ejabberd Version2.0.0 Updaterc1
Process-one ≫ Ejabberd Version2.0.1_2
Process-one ≫ Ejabberd Version2.0.2
Process-one ≫ Ejabberd Version2.0.3
Process-one ≫ Ejabberd Version2.0.4
Process-one ≫ Ejabberd Version2.0.5
Process-one ≫ Ejabberd Version2.1.0
Process-one ≫ Ejabberd Version2.1.1
Process-one ≫ Ejabberd Version2.1.2
Process-one ≫ Ejabberd Version2.1.3
Process-one ≫ Ejabberd Version2.1.4
Process-one ≫ Ejabberd Version2.1.5
Process-one ≫ Ejabberd Version2.1.6
Process-one ≫ Ejabberd Version2.1.7
Process-one ≫ Ejabberd Version2.1.8
Process-one ≫ Ejabberd Version2.1.9
Process-one ≫ Ejabberd Version2.1.10
Process-one ≫ Ejabberd Version2.1.11
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.6% | 0.726 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:P
|
http://www.debian.org/security/2013/dsa-2775
https://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.12/