Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-37601

muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information (list of admins, members, owners, and banned entities of a Multi-User chat room) in some common configurations.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.4%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2021-37601
  • Prosody » Prosody » Version: 0.11.0
    cpe:2.3:a:prosody:prosody:0.11.0
  • Prosody » Prosody » Version: 0.11.1
    cpe:2.3:a:prosody:prosody:0.11.1
  • Prosody » Prosody » Version: 0.11.2
    cpe:2.3:a:prosody:prosody:0.11.2
  • Prosody » Prosody » Version: 0.11.3
    cpe:2.3:a:prosody:prosody:0.11.3
  • Prosody » Prosody » Version: 0.11.4
    cpe:2.3:a:prosody:prosody:0.11.4
  • Prosody » Prosody » Version: 0.11.5
    cpe:2.3:a:prosody:prosody:0.11.5
  • Prosody » Prosody » Version: 0.11.6
    cpe:2.3:a:prosody:prosody:0.11.6
  • Prosody » Prosody » Version: 0.11.7
    cpe:2.3:a:prosody:prosody:0.11.7
  • Prosody » Prosody » Version: 0.11.8
    cpe:2.3:a:prosody:prosody:0.11.8
  • Prosody » Prosody » Version: 0.11.9
    cpe:2.3:a:prosody:prosody:0.11.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved