oss-sec mailing list archives
CVE-2017-7682 - Apache OpenMeetings - Business Logic Bypass
From: Maxim Solodovnik <solomax () apache org>
Date: Thu, 13 Jul 2017 23:26:13 +0700
Severity: Medium Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings 3.2.0 Description: Apache OpenMeetings is vulnerable to parameter manipulation attacks, as a result attacker has access to restricted areas. CVE-2017-7682 The issue was fixed in 3.3.0 All users are recommended to upgrade to Apache OpenMeetings 3.3.0 Credit: This issue was identified by Security Innovation
Current thread:
- CVE-2017-7682 - Apache OpenMeetings - Business Logic Bypass Maxim Solodovnik (Jul 13)