Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Package Hub 15 SP3 package prosody, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2021-37601 — CVSS 7.5 (high): muc.lib.lua in Prosody 0.11.0 through 0.11.9 allows remote attackers to obtain sensitive information (list of admins, members, owners, and…
CVE-2022-0217 — CVSS 7.5 (high): It was discovered that an internal Prosody library to load XML based on libexpat does not properly restrict the XML features allowed in…