CVE-2022-29169
BigBlueButton is vulnerable to a ReDoS in the bbb-html5 service due to the useragent lookup path. Affected software: BigBlueButton versions starting with 2.2 and before 2.3.19, 2.4.7, and 2.5.0-beta.2. Root cause: the useragent.lookup() function uses regex-based input handling in html5client/user...