Vulnerabilities > Bigbluebutton
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-12-16 | CVE-2022-41962 | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 2.7 |
2022-12-16 | CVE-2022-41960 | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 4.3 |
2022-09-29 | CVE-2020-27601 | Exposure of Resource to Wrong Sphere vulnerability in Bigbluebutton In BigBlueButton before 2.2.7, lockSettingsProps.disablePrivateChat does not apply to already opened chats. | 3.5 |
2022-09-29 | CVE-2020-27602 | Injection vulnerability in Bigbluebutton BigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId, userId, and authToken. | 9.8 |
2022-06-27 | CVE-2022-31039 | Incorrect Authorization vulnerability in Bigbluebutton Greenlight Greenlight is a simple front-end interface for your BigBlueButton server. | 5.3 |
2022-06-27 | CVE-2022-31064 | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 5.4 |
2022-06-27 | CVE-2022-31065 | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 6.1 |
2022-06-24 | CVE-2022-27238 | Cross-site Scripting vulnerability in Bigbluebutton BigBlueButton version 2.4.7 (or earlier) is vulnerable to stored Cross-Site Scripting (XSS) in the private chat functionality. | 5.4 |
2022-06-02 | CVE-2022-26497 | Cross-site Scripting vulnerability in Bigbluebutton Greenlight 2.11.1 BigBlueButton Greenlight 2.11.1 allows XSS. | 5.4 |
2022-06-02 | CVE-2022-29233 | Unspecified vulnerability in Bigbluebutton BigBlueButton is an open source web conferencing system. | 4.3 |