Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.4
CVSSv3

CVE-2023-3434

Published: 14/07/2023 Updated: 26/07/2023
CVSS v3 Base Score: 5.4 | Impact Score: 2.5 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Savoirfairelinux

Vulnerability Summary

Improper Input Validation in the hyperlink interpretation in Savoir-faire Linux's Jami (version 20222284) on Windows. This allows an malicious user to send a custom HTML anchor tag to pass a string value to the Windows QRC Handler through the Jami messenger.

Vulnerable Product Search on Vulmon Subscribe to Product

savoirfairelinux jami 20222284

References

NVD-CWE-noinfohttps://review.jami.net/c/jami-client-qt/+/23569https://git.jami.net/savoirfairelinux/jami-client-qt/-/wikis/Changelog#nightly-january-10https://blog.blacklanternsecurity.com/p/Jami-Local-Denial-Of-Service-and-QRC-Handler-Vulnerabilitieshttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook