Security Advisory

CVE-2024-46957

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-24 00:00:00
Last updated 2024-09-26 15:57:09
Assigner mitre
State PUBLISHED

Description

Mellium mellium.im/xmpp 0.0.1 through 0.21.4 allows response spoofing if the implementation uses predictable IDs because the stanza type is not checked. This is fixed in 0.22.0.