powered by Jive Software

Cve-2020-3495 vulnerability

Hi,
Any idea if recently issued vulnerability of cisco jabber that cve-2020-3495 impacts openfire as well, because this is related to XMPP for remote code execution .

The vulnerability that you mention relates to client software. Openfire is not.

Spark is an XMPP client. The CVE does not include enough details for me to verify if Spark is affected. These kind of issues are often highly specific to the implementation though.

Thanks for that update