CVE Vulnerabilities

CVE-2013-6169

Published: Oct 17, 2013 | Modified: Apr 11, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
MEDIUM
root.io minimus.io echohq.com

The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.

Affected Software

Name Vendor Start Version End Version
Ejabberd Process-one * 2.1.12 (including)
Ejabberd Process-one 0.9 (including) 0.9 (including)
Ejabberd Process-one 0.9.1 (including) 0.9.1 (including)
Ejabberd Process-one 0.9.8 (including) 0.9.8 (including)
Ejabberd Process-one 1.0.0 (including) 1.0.0 (including)
Ejabberd Process-one 1.1.0 (including) 1.1.0 (including)
Ejabberd Process-one 1.1.1 (including) 1.1.1 (including)
Ejabberd Process-one 1.1.1.0 (including) 1.1.1.0 (including)
Ejabberd Process-one 1.1.1.1 (including) 1.1.1.1 (including)
Ejabberd Process-one 1.1.2 (including) 1.1.2 (including)
Ejabberd Process-one 1.1.3 (including) 1.1.3 (including)
Ejabberd Process-one 1.1.14 (including) 1.1.14 (including)
Ejabberd Process-one 2.0.0 (including) 2.0.0 (including)
Ejabberd Process-one 2.0.0-beta1 (including) 2.0.0-beta1 (including)
Ejabberd Process-one 2.0.0-rc1 (including) 2.0.0-rc1 (including)
Ejabberd Process-one 2.0.1_2 (including) 2.0.1_2 (including)
Ejabberd Process-one 2.0.2 (including) 2.0.2 (including)
Ejabberd Process-one 2.0.3 (including) 2.0.3 (including)
Ejabberd Process-one 2.0.4 (including) 2.0.4 (including)
Ejabberd Process-one 2.0.5 (including) 2.0.5 (including)
Ejabberd Process-one 2.1.0 (including) 2.1.0 (including)
Ejabberd Process-one 2.1.1 (including) 2.1.1 (including)
Ejabberd Process-one 2.1.2 (including) 2.1.2 (including)
Ejabberd Process-one 2.1.3 (including) 2.1.3 (including)
Ejabberd Process-one 2.1.4 (including) 2.1.4 (including)
Ejabberd Process-one 2.1.5 (including) 2.1.5 (including)
Ejabberd Process-one 2.1.6 (including) 2.1.6 (including)
Ejabberd Process-one 2.1.7 (including) 2.1.7 (including)
Ejabberd Process-one 2.1.8 (including) 2.1.8 (including)
Ejabberd Process-one 2.1.9 (including) 2.1.9 (including)
Ejabberd Process-one 2.1.10 (including) 2.1.10 (including)
Ejabberd Process-one 2.1.11 (including) 2.1.11 (including)
Ejabberd Ubuntu devel *
Ejabberd Ubuntu lucid *
Ejabberd Ubuntu precise *
Ejabberd Ubuntu quantal *
Ejabberd Ubuntu raring *
Ejabberd Ubuntu saucy *
Ejabberd Ubuntu upstream *

References