3 matches found
CVE-2022-29234
BigBlueButton is an open source web conferencing system. Starting in version 2.2 and prior to versions 2.3.18 and 2.4.1, an attacker could send messages to a locked chat within a grace period of 5s any lock setting in the meeting was changed. The attacker needs to be a participant in the meeting...
CVE-2022-29234
BigBlueButton vulnerability CVE-2022-29234 allows a participant to send messages to a locked chat within a 5-second grace period after the lock settings take effect. Affected versions include 2.2 through 2.3.17 and 2.4.0. The issue is mitigated by patches in version 2.3.18 and 2.4.1, which close ...
CVE-2022-29234 Grace period for lock settings in public/private chats in BigBlueButton
BigBlueButton is an open source web conferencing system. Starting in version 2.2 and prior to versions 2.3.18 and 2.4.1, an attacker could send messages to a locked chat within a grace period of 5s any lock setting in the meeting was changed. The attacker needs to be a participant in the meeting...