Vulnerabilities > Atheme > Atheme > 7.2.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-02-14 | CVE-2022-24976 | Improper Authentication vulnerability in Atheme Atheme IRC Services before 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence. | 5.8 |
| 2017-03-02 | CVE-2017-6384 | Missing Release of Resource after Effective Lifetime vulnerability in Atheme 7.2.7 Memory leak in the login_user function in saslserv/main.c in saslserv/main.so in Atheme 7.2.7 allows a remote unauthenticated attacker to consume memory and cause a denial of service. | 7.8 |