Known Vulnerabilities
CVE-2023-28936
Attacker can access arbitrary recording/room Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.1.0
UNKNOWN
CVSS 5.3
Published May 12, 2023
CVE-2023-29246
An attacker who has gained access to an admin account can perform RCE via null-byte injection Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.1.0
UNKNOWN
CVSS 7.2
Published May 12, 2023
CVE-2023-28326
Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.0.0 Description: Attacker can elevate their privileges in any room
UNKNOWN
CVSS 9.8
Published Mar 28, 2023