Slixmpp Project Slixmpp — known CVE vulnerabilities
Every CVE whose affected-product data names Slixmpp Project Slixmpp, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2019-1000021 — CVSS 7.5 (high): slixmpp version before commit 7cd73b594e8122dddf847953fcfc85ab4d316416 contains an incorrect Access Control vulnerability in XEP-0223…
CVE-2022-45197 — CVSS 7.5 (high): Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of…
CVE-2017-5591 — CVSS 5.9 (medium): An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user…