Vulnerability Details CVE-2021-41055
Gajim 1.2.x and 1.3.x before 1.3.3 allows remote attackers to cause a denial of service (crash) via a crafted XMPP Last Message Correction (XEP-0308) message in multi-user chat, where the message ID equals the correction ID.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.3%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
Products affected by CVE-2021-41055
-
cpe:2.3:a:gajim:gajim:1.2.0
-
cpe:2.3:a:gajim:gajim:1.2.1
-
cpe:2.3:a:gajim:gajim:1.2.2
-
cpe:2.3:a:gajim:gajim:1.3.0
-
cpe:2.3:a:gajim:gajim:1.3.1
-
cpe:2.3:a:gajim:gajim:1.3.2