{
  "modified": "2025-08-09T19:01:28Z",
  "published": "2013-10-17T23:55:04Z",
  "id": "CVE-2013-6169",
  "details": "The TLS driver in ejabberd before 2.1.12 supports (1) SSLv2 and (2) weak SSL ciphers, which makes it easier for remote attackers to obtain sensitive information via a brute-force attack.",
  "references": [
    {
      "type": "ADVISORY",
      "url": "http://www.debian.org/security/2013/dsa-2775"
    },
    {
      "type": "WEB",
      "url": "https://www.process-one.net/en/ejabberd/release_notes/release_note_ejabberd_2.1.12/"
    }
  ]
}