A vulnerability classified as critical was found in Ignite Realtime Openfire up to 4.9.0. This vulnerability affects unknown code of the component System Property Handler. The manipulation of the argument admin.authorizedJIDs leads to improper authorization.
This vulnerability was named CVE-2024-25420. The attack can be initiated remotely. There is no exploit available.