Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2022-31064
HistoryJun 27, 2022 - 8:15 p.m.

CVE-2022-31064

2022-06-2720:15:08
Google
osv.dev
2

6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.6%

JSON

BigBlueButton is an open source web conferencing system. Users in meetings with private chat enabled are vulnerable to a cross site scripting attack in affected versions. The attack occurs when the attacker (with xss in the name) starts a chat. in the victim’s client the JavaScript will be executed. This issue has been addressed in version 2.4.8 and 2.5.0. There are no known workarounds for this issue.

Related

zdt 1
prion 1
cvelist 1
cnvd 1
nvd 1
cve 1
packetstorm 1
zdt
zdt
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting Vulnerability
2022-07-01 00:00:00
prion
prion
Cross site scripting
2022-06-27 20:15:00
cvelist
cvelist
CVE-2022-31064 Cross site scripting in username that will trigger by sending chat
2022-06-27 19:50:14
cnvd
cnvd
BigBlueButton Cross-Site Scripting Vulnerability (CNVD-2022-65311)
2022-06-30 00:00:00
nvd
nvd
CVE-2022-31064
2022-06-27 20:15:08
cve
cve
CVE-2022-31064
2022-06-27 20:15:08
packetstorm
packetstorm
BigBlueButton 2.3 / 2.4.7 Cross Site Scripting
2022-07-01 00:00:00

6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.6%

JSON
Related for OSV:CVE-2022-31064
zdt1prion1cvelist1cnvd1nvd1cve1packetstorm1