Vulnerabilities > Charybdis Project

DATE CVE VULNERABILITY TITLE RISK
2016-09-21 CVE-2016-7143 Improper Authorization vulnerability in multiple products
The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE parameter.
network
high complexity
debian charybdis-project CWE-285
8.1
8.1