Vulnerabilities > CVE-2023-3433 - Unspecified vulnerability in Savoirfairelinux Jami 20222284

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

savoirfairelinux

NVD

Published: 2023-07-14

Updated: 2023-07-26

Summary

The "nickname" field within Savoir-faire Linux's Jami application is susceptible to a failed state when a user inserts special characters into the field. When present, these special characters, make it so the application cannot create the signature for the user and results in a local denial of service to the application.

Vulnerable Configurations

Part	Description	Count
Application	Savoirfairelinux Savoirfairelinux Jami 20222284	1

References

https://git.jami.net/savoirfairelinux/jami-client-qt/-/wikis/Changelog#nightly-january-10
https://review.jami.net/c/jami-daemon/+/23575
https://blog.blacklanternsecurity.com/p/Jami-Local-Denial-Of-Service-and-QRC-Handler-Vulnerabilities