Lucene search
Veracode Vulnerability DatabaseVERACODE:40550HistoryMay 16, 2023 - 11:32 p.m.
Improper Authentication
2023-05-1623:32:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
improper authentication
authenticated attacker
private information
impersonation
invitation hash check
0.003 Low
EPSS
Percentile
66.1%
org.apache.openmeetings:openmeetings-web is vulnerable to Improper Authentication. An authenticated attacker that has gained access to certain private information is able to use this to impersonate another user because permissions can be incorrectly set during an invitation hash check.
| CPE | Name | Operator | Version |
|---|---|---|---|
| openmeetings | le | 7.0.0 | |
| openmeetings | le | 7.0.0 |
Related
prion
prion
Design/Logic Flaw
2023-05-12 08:15:00
openvas
openvas
Apache OpenMeetings 3.1.3 < 7.1.0 Authentication Bypass Vulnerability
2023-05-15 00:00:00
cve
cve
CVE-2023-29032
2023-05-12 08:15:08
osv
osv
Apache OpenMeetings Improper Authentication vulnerability
2023-05-12 09:30:15
CVE-2023-29032
2023-05-12 08:15:08
cvelist
cvelist
CVE-2023-29032 Apache OpenMeetings: allows bypass authentication
2023-05-12 07:43:30
cnvd
cnvd
Apache OpenMeetings Authorization Issues Vulnerability
2023-05-17 00:00:00
nvd
nvd
CVE-2023-29032
2023-05-12 08:15:08
github
github
Apache OpenMeetings Improper Authentication vulnerability
2023-05-12 09:30:15
thn
thn