Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
inspircd inspircd vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2022-24976
Atheme IRC Services prior to 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence.
Atheme Atheme
356
VMScore
CVE-2021-33586
InspIRCd 3.8.0 up to and including 3.9.x prior to 3.10.0 allows any user (able to connect to the server) to access recently deallocated memory, aka the "malformed PONG" issue.
Inspircd Inspircd
605
VMScore
CVE-2019-20918
An issue exists in InspIRCd 3 prior to 3.1.0. The silence module contains a use after free vulnerability. This vulnerability can be used for remote crashing of an InspIRCd server by any user able to fully connect to a server.
Inspircd Inspircd
605
VMScore
CVE-2020-25269
An issue exists in InspIRCd 2 prior to 2.0.29 and 3 prior to 3.6.0. The pgsql module contains a use after free vulnerability. When combined with the sqlauth or sqloper modules, this vulnerability can be used for remote crashing of an InspIRCd server by any user able to connect to...
Inspircd Inspircd
Debian Debian Linux 9.0
Debian Debian Linux 10.0
605
VMScore
CVE-2019-20917
An issue exists in InspIRCd 2 prior to 2.0.28 and 3 prior to 3.3.0. The mysql module contains a NULL pointer dereference when built against mariadb-connector-c 3.0.5 or newer. When combined with the sqlauth or sqloper modules, this vulnerability can be used for remote crashing of...
Inspircd Inspircd
Debian Debian Linux 9.0
Debian Debian Linux 10.0
668
VMScore
CVE-2012-6696
inspircd in Debian prior to 2.0.7 does not properly handle unsigned integers. NOTE: This vulnerability exists because of an incomplete fix to CVE-2012-1836.
Inspircd Inspircd
668
VMScore
CVE-2015-6674
Buffer underflow vulnerability in the Debian inspircd package prior to 2.0.5-1+deb7u1 for wheezy and prior to 2.0.16-1 for jessie and sid. NOTE: This issue exists as an additional issue from an incomplete fix of CVE-2012-1836.
Inspircd Inspircd
Debian Debian Linux 8.0
Debian Debian Linux 7.0
445
VMScore
CVE-2012-6697
InspIRCd prior to 2.0.7 allows remote malicious users to cause a denial of service (infinite loop).
Inspire Ircd Inspircd
Debian Debian Linux 7.0
383
VMScore
CVE-2016-7142
The m_sasl module in InspIRCd prior to 2.0.23, when used with a service that supports SASL_EXTERNAL authentication, allows remote malicious users to spoof certificate fingerprints and consequently log in as another user via a crafted SASL message.
Inspircd Inspircd
Debian Debian Linux 8.0
694
VMScore
CVE-2015-8702
The DNS::GetResult function in dns.cpp in InspIRCd prior to 2.0.19 allows remote DNS servers to cause a denial of service (netsplit) via an invalid character in a PTR response, as demonstrated by a "\032" (whitespace) character in a hostname.
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Inspircd Inspircd
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »