Vulnerabilities > Quassel IRC

DATE	CVE	VULNERABILITY TITLE	RISK
2021-06-17	CVE-2021-34825	Cleartext Transmission of Sensitive Information vulnerability in multiple products Quassel through 0.13.1, when --require-ssl is enabled, launches without SSL or TLS support if a usable X.509 certificate is not found on the local system. network low complexity quassel-irc fedoraproject CWE-319	7.5
2018-05-08	CVE-2018-1000179	NULL Pointer Dereference vulnerability in multiple products A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service. network low complexity quassel-irc debian CWE-476	7.5
2018-05-08	CVE-2018-1000178	Out-of-bounds Write vulnerability in multiple products A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely. network low complexity quassel-irc debian CWE-787 critical	9.8
2016-06-13	CVE-2016-4414	The onReadyRead function in core/coreauthhandler.cpp in Quassel before 0.12.4 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via invalid handshake data. network low complexity opensuse quassel-irc fedoraproject	7.5
2016-01-08	CVE-2015-8547	Code vulnerability in multiple products The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote attackers to cause a denial of service (application crash) via the "/op *" command in a query. network low complexity quassel-irc opensuse CWE-17	7.5

Vulnerabilities > Quassel IRC {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Quassel IRC"}]}

Vulnerabilities > Quassel IRC