← back
CVE-2022-24976

CVE-2022-24976

EPSS 1.8%
Atheme IRC Services before 7.2.12, when used in conjunction with InspIRCd, allows authentication bypass by ending an IRC handshake at a certain point during a challenge-response login sequence.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/atheme/atheme/commit/4e664c75d0b280a052eb8b5e81aa41944e593c52https://github.com/atheme/atheme/compare/v7.2.11...v7.2.12https://www.openwall.com/lists/oss-security/2022/01/30/4