Modules.cpp in ZNC before 1.7.4-rc1 allows remote authenticated non-admin users to escalate privileges and execute arbitrary code by loading a module with a crafted name.
CVSS Score
8.8
EPSS Score
0.029
Published
2019-06-15
ZNC before 1.7.3-rc1 allows an existing remote user to cause a Denial of Service (crash) via invalid encoding.
CVSS Score
6.5
EPSS Score
0.017
Published
2019-03-27