ID | CVE-2014-8760 | ||||||
Sažetak | ejabberd before 2.1.13 does not enforce the starttls_required setting when compression is used, which causes clients to establish connections without encryption. | ||||||
Reference |
|
||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:P/I:N/A:N | ||||||
Zadnje važnije ažuriranje | 10-09-2015 - 15:56 | ||||||
Objavljeno | 25-10-2014 - 00:55 |