Exploit for #VU21738 Improper Authorization in Openfire
Vulnerability identifier: #VU21738
Vulnerability risk: Medium
CVSSv3.1: 7.3 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-285
Exploitation vector: Network
Exploits in database: 1
- March 18, 2020
- Openfire 3.10.2 - Privilege Escalation [Exploit-DB]
Impact: Information disclosure and data manipulation
Vulnerable software:
Openfire
Web applications /
Modules and components for CMS
Vendor: Ignite Realtime
