Vulnerabilities > Mellium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-31 | CVE-2022-48195 | Improper Authentication vulnerability in Mellium Sasl 0.3.0 An issue was discovered in Mellium mellium.im/sasl before 0.3.1. | 9.8 |
| 2022-02-11 | CVE-2022-24968 | Improper Certificate Validation vulnerability in Mellium Xmpp In Mellium mellium.im/xmpp through 0.21.0, an attacker capable of spoofing DNS TXT records can redirect a WebSocket connection request to a server under their control without causing TLS certificate verification to fail. | 4.3 |