CVE-2017-7688

4 documents4 sources
Severity
7.5HIGH
EPSS
1.1%
top 21.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Apache Software Foundation Apache OpenmeetingsApache Openmeetings
Timeline
PublishedJul 17
Latest updateMay 13

Description

Apache OpenMeetings 1.0.0 updates user password in insecure manner.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

NVDapache/openmeetings21 versions+20

🔴Vulnerability Details

3
GHSA
Apache OpenMeetings updates user password in insecure manner2022-05-13
OSV
Apache OpenMeetings updates user password in insecure manner2022-05-13
CVEList
CVE-2017-7688: Apache OpenMeetings 12017-07-14
CVE-2017-7688 (HIGH CVSS 7.5) | Apache OpenMeetings 1.0.0 updates u | cvebase.io