{"id":"CVE-2013-6169","details":"The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.","modified":"2026-04-16T06:25:47.968331826Z","published":"2013-10-17T23:55:04Z","references":[{"type":"ADVISORY","url":"http://www.debian.org/security/2013/dsa-2775"},{"type":"WEB","url":"https://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.12/"}],"schema_version":"1.7.5"}