44 matches found
CVE-2022-41964 BigBlueButton contains Response leaks in anonymous polls
BigBlueButton is an open source web conferencing system. This vulnerability only affects release candidates of BigBlueButton 2.4. The attacker can start a subscription for poll results before starting an anonymous poll, and use this subscription to see individual responses in the anonymous poll...
PT-2022-26186 · Unknown · Bigbluebutton
Name of the Vulnerable Software and Affected Versions: BigBlueButton versions prior to 2.4-rc-6 BigBlueButton versions prior to 2.5-alpha-1 Description: BigBlueButton is an open source web conferencing system. The issue concerns Incorrect Authorization for setting emoji status. A user with...
BigBlueButton 安全漏洞
BigBlueButton is BigBlueButton community of a set of open source Web conferencing system . A conference access code brute force attack vulnerability exists in BigBlueButton 2.2.29 and earlier versions. The vulnerability stems from the ability to enter an unlimited amount of code for a conference...
PT-2020-13043 · Bigbluebutton · Bigbluebutton
Name of the Vulnerable Software and Affected Versions: BigBlueButton versions prior to 2.2.5 Description: The issue allows remote attackers to obtain sensitive files via Local File Inclusion. Recommendations: For versions prior to 2.2.5, update to version 2.2.5 or later to resolve the issue...