[ANNOUNCE] CVE-2020-13951 - Apache Openmeetings: DoS via public web service

[Maxim Solodovnik <solomax () apache org>]

Severity: High

Vendor: The Apache Software Foundation

Versions Affected: 4.0.0 - 5.0.0

Description: NetTest web service can be used to perform Denial of Service attack
CVE-2020-13951

The issue was fixed in 5.0.1
All users are recommended to upgrade to Apache OpenMeetings 5.0.1

Credit: This issue was identified by Trung Le, Chi Tran, Ngo Van Thien