Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
inspircd inspircd vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2022-24976
Atheme IRC Services prior to 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence.
Atheme Atheme
4
CVSSv2
CVE-2021-33586
InspIRCd 3.8.0 up to and including 3.9.x prior to 3.10.0 allows any user (able to connect to the server) to access recently deallocated memory, aka the "malformed PONG" issue.
Inspircd Inspircd
6.8
CVSSv2
CVE-2019-20917
An issue exists in InspIRCd 2 prior to 2.0.28 and 3 prior to 3.3.0. The mysql module contains a NULL pointer dereference when built against mariadb-connector-c 3.0.5 or newer. When combined with the sqlauth or sqloper modules, this vulnerability can be used for remote crashing of...
Inspircd Inspircd
Debian Debian Linux 9.0
Debian Debian Linux 10.0
6.8
CVSSv2
CVE-2019-20918
An issue exists in InspIRCd 3 prior to 3.1.0. The silence module contains a use after free vulnerability. This vulnerability can be used for remote crashing of an InspIRCd server by any user able to fully connect to a server.
Inspircd Inspircd
6.8
CVSSv2
CVE-2020-25269
An issue exists in InspIRCd 2 prior to 2.0.29 and 3 prior to 3.6.0. The pgsql module contains a use after free vulnerability. When combined with the sqlauth or sqloper modules, this vulnerability can be used for remote crashing of an InspIRCd server by any user able to connect to...
Inspircd Inspircd
Debian Debian Linux 9.0
Debian Debian Linux 10.0
7.5
CVSSv2
CVE-2012-6696
inspircd in Debian prior to 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.
Inspircd Inspircd
5
CVSSv2
CVE-2012-6697
InspIRCd prior to 2.0.7 allows remote malicious users to cause a denial of service (infinite loop).
Inspire Ircd Inspircd
Debian Debian Linux 7.0
7.5
CVSSv2
CVE-2015-6674
Buffer underflow vulnerability in the Debian inspircd package prior to 2.0.5-1+deb7u1 for wheezy and prior to 2.0.16-1 for jessie and sid. NOTE: This issue exists as an additional issue from an incomplete fix of CVE-2012-1836.
Inspircd Inspircd
Debian Debian Linux 8.0
Debian Debian Linux 7.0
4.3
CVSSv2
CVE-2016-7142
The m_sasl module in InspIRCd prior to 2.0.23, when used with a service that supports SASL_EXTERNAL authentication, allows remote malicious users to spoof certificate fingerprints and consequently log in as another user via a crafted SASL message.
Inspircd Inspircd
Debian Debian Linux 8.0
7.8
CVSSv2
CVE-2015-8702
The DNS::GetResult function in dns.cpp in InspIRCd prior to 2.0.19 allows remote DNS servers to cause a denial of service (netsplit) via an invalid character in a PTR response, as demonstrated by a "\032" (whitespace) character in a hostname.
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Inspircd Inspircd
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »