MEDIUM
Mcabber
CVE published 2017-02-09
CVE-2017-5604
CVE-2017-5604 is a medium-severity integrity issue in mcabber 1.0.0 through 1.0.4. NVD describes it as an incorrect implementation of XEP-0280 Message Carbons that can let a remote attacker impersonate any user, including contacts, in the application's display. The practical risk is deceptive messaging: users may be shown messages that appear to come from a trusted contact or another account, which can su [truncated]