Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

vendredi 14 mai 2021

Prosody up to 0.11.8 Server-to-Server Authentication dialback_without_dialback certificate validation

A vulnerability was found in Prosody up to 0.11.8 and classified as critical. Affected by this issue is the function dialback_without_dialback of the component Server-to-Server Authentication. Upgrading to version 0.11.9 eliminates this vulnerability. The upgrade is hosted for download at

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 46


Événements SSI