Remote Unauthenticated DoS Vulnerability in Prosody

Remote Unauthenticated DoS Vulnerability in Prosody

CVE-2021-32918 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

An issue was discovered in Prosody before 0.11.9. Default settings are susceptible to remote unauthenticated denial-of-service (DoS) attacks via memory exhaustion when running under Lua 5.2 or Lua 5.3.

Learn more about our Web Application Penetration Testing UK.