Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
irssi irssi vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-29602
The official irssi docker images prior to 1.1-alpine (Alpine specific) contain a blank password for a root user. System using the irssi docker container deployed by affected versions of the Docker image may allow an remote malicious user to achieve root access with a blank passwo...
Irssi Docker Image
9.8
CVSSv3
CVE-2019-15717
Irssi 1.2.x prior to 1.2.2 has a use-after-free if the IRC server sends a double CAP.
Irssi Irssi
Canonical Ubuntu Linux 19.04
9.8
CVSSv3
CVE-2019-5882
Irssi 1.1.x prior to 1.1.2 has a use after free when hidden lines are expired from the scroll buffer.
Irssi Irssi
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
9.8
CVSSv3
CVE-2018-7053
An issue exists in Irssi prior to 1.0.7 and 1.1.x prior to 1.1.1. There is a use-after-free when SASL messages are received in an unexpected order.
Irssi Irssi 1.1.0
Irssi Irssi
Debian Debian Linux 9.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
9.8
CVSSv3
CVE-2018-7054
An issue exists in Irssi prior to 1.0.7 and 1.1.x prior to 1.1.1. There is a use-after-free when a server is disconnected during netsplits. NOTE: this issue exists because of an incomplete fix for CVE-2017-7191.
Irssi Irssi 1.1.0
Irssi Irssi
Canonical Ubuntu Linux 17.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2018-5206
When the channel topic is set without specifying a sender, Irssi prior to 1.0.6 may dereference a NULL pointer.
Irssi Irssi
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2018-5208
In Irssi prior to 1.0.6, a calculation error in the completion code could cause a heap buffer overflow when completing certain strings.
Irssi Irssi
Debian Debian Linux 9.0
9.8
CVSSv3
CVE-2017-10965
An issue exists in Irssi prior to 1.0.4. When receiving messages with invalid time stamps, Irssi would try to dereference a NULL pointer.
Irssi Irssi
9.8
CVSSv3
CVE-2017-10966
An issue exists in Irssi prior to 1.0.4. While updating the internal nick list, Irssi could incorrectly use the GHashTable interface and free the nick while updating it. This would then result in use-after-free conditions on each access of the hash table.
Irssi Irssi
9.8
CVSSv3
CVE-2017-7191
The netjoin processing in Irssi 1.x prior to 1.0.2 allows malicious users to cause a denial of service (use-after-free) and possibly execute arbitrary code via unspecified vectors.
Irssi Irssi
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »