Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-09-29	CVE-2020-27602	Injection vulnerability in Bigbluebutton BigBlueButton before 2.2.7 does not have a protection mechanism for separator injection in meetingId, userId, and authToken. network low complexity bigbluebutton CWE-74 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.