Improper Input Validation in the hyperlink interpretation in Savoir-faire Linux's Jami (version 20222284) on Windows.
This allows an attacker to send a custom HTML anchor tag to pass a string value to the Windows QRC Handler through the Jami messenger.
Metrics
Affected Vendors & Products
References
History
Tue, 22 Oct 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: BLSOPS
Published: 2023-07-14T12:29:34.563Z
Updated: 2024-10-22T14:32:14.447Z
Reserved: 2023-06-27T15:32:06.551Z
Link: CVE-2023-3434
Vulnrichment
Updated: 2024-08-02T06:55:03.259Z
NVD
Status : Modified
Published: 2023-07-14T13:15:09.363
Modified: 2024-11-21T08:17:15.557
Link: CVE-2023-3434
Redhat
No data.