mcabber CVE Vulnerabilities & CVE List (2)

Products (CPE): — CVEs: 2

mcabber vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to mcabber, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 12 of 2 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2016-9928 MCabber before 1.0.4 is vulnerable to roster push attacks, which allows remote attackers to intercept communications, or add themselves as an entity on a 3rd party's roster as another user, which will also garner associated privileges, via crafted XMPP packets. [email protected] 7.4 4.51% 2020-02-06 2026-06-16
CVE-2017-5604 An incorrect implementation of "XEP-0280: Message Carbons" in multiple XMPP clients allows a remote attacker to impersonate any user, including contacts, in the vulnerable application's display. This allows for various kinds of social engineering attacks. This CVE is for mcabber 1.0.0 - 1.0.4. [email protected] 5.9 1.33% 2017-02-09 2026-06-16
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence