oss-sec mailing list archives
[ANNOUNCE] CVE-2020-13951 - Apache Openmeetings: DoS via public web service
From: Maxim Solodovnik <solomax () apache org>
Date: Mon, 28 Sep 2020 19:04:56 +0700
Severity: High Vendor: The Apache Software Foundation Versions Affected: 4.0.0 - 5.0.0 Description: NetTest web service can be used to perform Denial of Service attack CVE-2020-13951 The issue was fixed in 5.0.1 All users are recommended to upgrade to Apache OpenMeetings 5.0.1 Credit: This issue was identified by Trung Le, Chi Tran, Ngo Van Thien
Current thread:
- [ANNOUNCE] CVE-2020-13951 - Apache Openmeetings: DoS via public web service Maxim Solodovnik (Sep 28)