Aggregates CVE and security vulnerability intelligence across all konversation-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk input validation and vendor risk denial of service, with potential vendor impact unexpected behavior across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-5050 | konversation before 1.2.3 allows attackers to cause a denial of service. | [email protected] | 7.5 | 0.37% | 2019-11-06 | 2024-11-21 |
| CVE-2017-15923 | Konversation 1.4.x, 1.5.x, 1.6.x, and 1.7.x before 1.7.3 allow remote attackers to cause a denial of service (crash) via vectors related to parsing of IRC color formatting codes. | [email protected] | 7.5 | 0.79% | 2017-11-15 | 2026-05-13 |
| CVE-2007-4400 | CRLF injection vulnerability in the included media script in Konversation allows user-assisted remote attackers to execute arbitrary IRC commands via CRLF sequences in the name of the song in a .mp3 file. | [email protected] | 6.8 | 2.72% | 2007-08-18 | 2026-04-23 |