Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quassel-irc quassel irc 0.10.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-1000178
A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an malicious user to execute code remotely.
Quassel-irc Quassel 0.12.4
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2018-1000179
A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an malicious user to cause a denial of service.
Quassel-irc Quassel 0.12.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2015-8547
The CoreUserInputHandler::doMode function in core/coreuserinputhandler.cpp in Quassel 0.10.0 allows remote malicious users to cause a denial of service (application crash) via the "/op *" command in a query.
Quassel-irc Quassel
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2015-3427
Quassel prior to 0.12.2 does not properly re-initialize the database session when the PostgreSQL database is restarted, which allows remote malicious users to conduct SQL injection attacks via a \ (backslash) in a message. NOTE: this vulnerability exists because of an incomplete ...
Quassel-irc Quassel
Debian Debian Linux 8.0
NA
CVE-2014-8483
The blowfishECB function in core/cipher.cpp in Quassel IRC 0.10.0 allows remote malicious users to cause a denial of service (out-of-bounds read) via a malformed string.
Canonical Ubuntu Linux 12.04
Debian Debian Linux 7.0
Quassel-irc Quassel Irc 0.10.0
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
NA
CVE-2013-4422
SQL injection vulnerability in Quassel IRC prior to 0.9.1, when Qt 4.8.5 or later and PostgreSQL 8.2 or later are used, allows remote malicious users to execute arbitrary SQL commands via a \ (backslash) in a message.
Quassel-irc Quassel Irc
Quassel-irc Quassel Irc 0.1.0
Quassel-irc Quassel Irc 0.3.0
Quassel-irc Quassel Irc 0.3.0.1
Quassel-irc Quassel Irc 0.3.0.2
Quassel-irc Quassel Irc 0.3.0.3
Quassel-irc Quassel Irc 0.3.1
Quassel-irc Quassel Irc 0.4.0
Quassel-irc Quassel Irc 0.4.1
Quassel-irc Quassel Irc 0.4.2
Quassel-irc Quassel Irc 0.4.3
Quassel-irc Quassel Irc 0.5.0
Quassel-irc Quassel Irc 0.6.1
Quassel-irc Quassel Irc 0.6.2
Quassel-irc Quassel Irc 0.6.3
Quassel-irc Quassel Irc 0.7.0
Quassel-irc Quassel Irc 0.7.1
Quassel-irc Quassel Irc 0.7.2
Quassel-irc Quassel Irc 0.7.3
Quassel-irc Quassel Irc 0.7.4
Quassel-irc Quassel Irc 0.8.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-0044
client side
CVE-2021-47601
deserialization
CVE-2024-34994
encryption
CVE-2021-47609
CVE-2024-37079
CVE-2024-38608
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started