Openfire Authentication Bypass (CVE-2023-32315)

high Nessus Plugin ID 178030

Language:

Version 1.24 Nov 12, 2024, 8:29 PM Logic Changes (Adding installs report) Plugin Feed: 202411122029
Version 1.23 Oct 10, 2024, 11:57 PM New Plugin Feed: 202410102357
Version 1.18 Jul 17, 2024, 11:02 PM Logic Changes Plugin Feed: 202407172302
Version 1.16 May 20, 2024, 10:13 AM Logic Changes Plugin Feed: 202405201013
Version 1.13 Mar 19, 2024, 6:40 PM Logic Changes (Improving logging to reduce disk space usage) Plugin Feed: 202403191840
Version 1.10 Feb 9, 2024, 11:22 AM New Plugin Feed: 202402091122
Version 1.7 Sep 26, 2023, 8:16 PM Logic Changes Plugin Feed: 202309262016
Version 1.6 Sep 11, 2023, 4:16 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:H/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:H/RL:O/RC:C") Exploit attributes ("Exploited by malware" set to "True") Plugin Feed: 202309111616
Version 1.5 Aug 25, 2023, 12:02 AM CISA reference Plugin Feed: 202308250002
Version 1.4 Jul 19, 2023, 2:11 PM Exploit attributes ("Exploit framework metasploit" set to "True") CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:F/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:F/RL:O/RC:C") Plugin Feed: 202307191411
Version 1.3 Jul 17, 2023, 5:15 PM Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii()) Plugin Feed: 202307171715
Version 1.2 Jul 10, 2023, 11:39 PM New Plugin Feed: 202307102339
Version 1.1 Jul 10, 2023, 4:14 PM CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C") Exploit attributes ("Exploit available" set to "True". "Exploitability ease" set to "Exploits are available") Plugin Feed: 202307101614
Version 1.0 Jul 7, 2023, 6:06 PM New Plugin Feed: 202307071806

* Changelogs are generally available for changes made after Nov 1, 2022