Lucene search
GoogleOSV:CVE-2023-28936HistoryMay 12, 2023 - 8:15 a.m.
CVE-2023-28936
2023-05-1208:15:08
Google
osv.dev
4
apache openmeetings
arbitrary access
cve-2023-28936
security vulnerability
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.8%
Attacker can access arbitrary recording/room
Vendor: The Apache Software Foundation
VersionsΒ Affected: Apache OpenMeetings from 2.0.0 before 7.1.0
Related
prion
prion
Design/Logic Flaw
2023-05-12 08:15:00
veracode
veracode
Insufficient Hash Check
2023-05-19 05:43:19
cve
cve
CVE-2023-28936
2023-05-12 08:15:08
cvelist
cvelist
CVE-2023-28936 Apache OpenMeetings: insufficient check of invitation hash
2023-05-12 07:45:04
cnvd
cnvd
Apache OpenMeetings Information Disclosure Vulnerability
2023-05-17 00:00:00
github
github
Apache OpenMeetings insufficient authorization vulnerability
2023-07-06 21:14:56
osv
osv
Apache OpenMeetings insufficient authorization vulnerability
2023-07-06 21:14:56
nvd
nvd
CVE-2023-28936
2023-05-12 08:15:08
openvas
openvas
Apache OpenMeetings 2.0.0 < 7.1.0 Multiple Vulnerabilities
2023-05-15 00:00:00
thn
thn
5.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
7.3 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.8%
Related for OSV:CVE-2023-28936