CVE-2016-1232 in Prosody
Summary
The mod_dialback module in Prosody before 0.9.9 does not properly generate random values for the secret token for server-to-server dialback authentication, which makes it easier for attackers to spoof servers via a brute force attack.
If you want to get best quality of vulnerability data, you may have to visit VulDB.