SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

[Forgot Password]

Paid content will be excluded from the download.

Download | Alert*

CVE

CVE-2024-25421

Date: (C)2024-03-27 (M)2024-03-27

An issue in Ignite Realtime Openfire v.4.9.0 and before allows a remote attacker to escalate privileges via the ROOM_CACHE component.

Reference:

https://github.com/igniterealtime/Openfire/blob/main/xmppserver/src/main/java/org/jivesoftware/openfire/muc/spi/LocalMUCRoomManager.java

https://www.hackthebox.com/blog/openfire-cves-explained-CVE-2024-25420-CVE-2024-25421

https://www.igniterealtime.org/projects/openfire/

© SecPod Technologies