Vulnerabilities > Irssi

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-29602 Unspecified vulnerability in Irssi Docker Image
The official irssi docker images before 1.1-alpine (Alpine specific) contain a blank password for a root user.
network
low complexity
irssi
critical
10.0
2019-08-29 CVE-2019-15717 USE After Free vulnerability in multiple products
Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP.
network
low complexity
irssi canonical CWE-416
7.5
2019-06-29 CVE-2019-13045 USE After Free vulnerability in Irssi
Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server.
network
irssi CWE-416
6.8
2019-01-09 CVE-2019-5882 USE After Free vulnerability in multiple products
Irssi 1.1.x before 1.1.2 has a use after free when hidden lines are expired from the scroll buffer.
network
low complexity
irssi canonical CWE-416
7.5
2018-02-15 CVE-2018-7054 USE After Free vulnerability in multiple products
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
network
low complexity
irssi canonical debian CWE-416
7.5
2018-02-15 CVE-2018-7053 USE After Free vulnerability in multiple products
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
network
low complexity
irssi debian canonical CWE-416
7.5
2018-02-15 CVE-2018-7052 Null Pointer Dereference vulnerability in multiple products
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
network
low complexity
irssi canonical debian CWE-476
5.0
2018-02-15 CVE-2018-7051 Out-Of-Bounds Read vulnerability in multiple products
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
network
low complexity
irssi debian canonical CWE-125
5.0
2018-02-15 CVE-2018-7050 Null Pointer Dereference vulnerability in multiple products
An issue was discovered in Irssi before 1.0.7 and 1.1.x before 1.1.1.
network
low complexity
irssi debian canonical CWE-476
5.0
2018-01-06 CVE-2018-5208 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
In Irssi before 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings.
network
low complexity
irssi debian CWE-119
7.5