This page aggregates publicly disclosed CVE and security risk information related to unreal, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-1214 | UnrealIRCd 3.2.3 allows remote attackers to cause an unspecified denial of service by causing a linked server to send malformed TKL Q:Line commands, as demonstrated by "TKL - q\x08Q *\x08PoC." | [email protected] | 5.0 | 6.31% | 2006-03-14 | 2026-04-16 |
| CVE-2004-0679 | The IP cloaking feature (cloak.c) in UnrealIRCd 3.2, and possibly other versions, uses a weak hashing scheme to hide IP addresses, which could allow remote attackers to use brute force methods to gain other user's IP addresses. | [email protected] | 5.0 | 0.85% | 2004-08-06 | 2026-04-16 |
| CVE-2002-1675 | Format string vulnerability in the Cio_PrintF function of cio_main.c in Unreal IRCd 3.1.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers. | [email protected] | 6.4 | 1.92% | 2002-12-31 | 2026-04-16 |