Vulnerabilities > CVE-2022-36736 - Improper Restriction of Rendered UI Layers or Frames vulnerability in Jitsi 2.10.5550

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

jitsi

CWE-1021

NVD

Published: 2022-09-08

Updated: 2024-08-03

Summary

Jitsi-2.10.5550 was discovered to contain a vulnerability in its web UI which allows attackers to perform a clickjacking attack via a crafted HTTP request. NOTE: this is disputed by the vendor

Vulnerable Configurations

Part	Description	Count
Application	Jitsi Jitsi Jitsi 2.10.5550	1

Common Weakness Enumeration (CWE)

CWE-1021 - Improper Restriction of Rendered UI Layers or Frames

References

https://meet.jit.si/
https://github.com/UditChavda/Udit-Chavda-CVE/blob/main/CVE-2022-36736