PT-2019-14217 · Ignite Realtime · Openfire

Luke Arntson

Publicado

2019-08-23

Atualizado

2019-08-27

CVE-2019-15488

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Ignite Realtime Openfire versions prior to 4.4.1

Description The issue is related to reflected XSS that can be triggered via an LDAP setup test.

Recommendations For versions prior to 4.4.1, update to version 4.4.1 or later to resolve the issue.

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2019-15488

GHSA-5QFV-RR79-CHX5

Openfire