Vulnerabilities > Irssi > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-08 | CVE-2020-29602 | Unspecified vulnerability in Irssi Docker Image The official irssi docker images before 1.1-alpine (Alpine specific) contain a blank password for a root user. | 10.0 |
| 2019-08-29 | CVE-2019-15717 | Use After Free vulnerability in multiple products Irssi 1.2.x before 1.2.2 has a use-after-free if the IRC server sends a double CAP. | 9.8 |
| 2007-08-18 | CVE-2007-4396 | Unspecified vulnerability in Irssi Multiple CRLF injection vulnerabilities in (1) ixmmsa.pl 0.3, (2) l33tmusic.pl 2.00, (3) mpg123.pl 0.01, (4) ogg123.pl 0.01, (5) xmms.pl 2.0, (6) xmms2.pl 1.1.3, and (7) xmmsinfo.pl 1.1.1.1 scripts for irssi before 0.8.11 allow user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file. | 9.3 |
| 2002-12-31 | CVE-2002-1840 | Unspecified vulnerability in Irssi 0.8.4 irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which allows remote attackers to access the system. | 10.0 |