CVE-2020-27609

2020-10-2114:08:45

mitre

www.cve.org

bigbluebutton

unauthorized recording

data storage

EPSS

0.001

Percentile

40.7%

JSON

BigBlueButton through 2.2.28 records a video meeting despite the deactivation of video recording in the user interface. This may result in data storage beyond what is authorized for a specific meeting topic or participant.

References

docs.bigbluebutton.org/admin/privacy.html

www.golem.de/news/big-blue-button-das-grosse-blaue-sicherheitsrisiko-2010-151610.html

EPSS

0.001

Percentile

40.7%

JSON

Related for CVELIST:CVE-2020-27609