CVE-2024-25420 | Ignite Realtime Openfire up to 4.9.0 System Property admin.authorizedJIDs improper authorization

Inserito da Angelo Barbosa | Mar 26, 2024 | CVE

A vulnerability classified as critical was found in Ignite Realtime Openfire up to 4.9.0. This vulnerability affects unknown code of the component System Property Handler. The manipulation of the argument admin.authorizedJIDs leads to improper authorization.

This vulnerability was named CVE-2024-25420. The attack can be initiated remotely. There is no exploit available.

CVE-2024-25420 | Ignite Realtime Openfire up to 4.9.0 System Property admin.authorizedJIDs improper authorization

Post correlati

CVE-2023-51204 | OSRF ROS2 Foxy Fitzroy deserialization

CVE-2023-35633 | Microsoft unknown vulnerability

CVE-2024-8044 | infolinks Ad Wrap Plugin up to 1.0.2 on WordPress Setting cross-site request forgery

CVE-2024-31610 | code-projects Simple School Management System 1.0 File unrestricted upload