CVE-2023-29032

CVE-2023-29032: Apache OpenMeetings: allows bypass authentication

Vendor Apache Software Foundation

Product Apache OpenMeetings

Weakness CWE-287 · Improper authentication

Published May 12, 2023

Last update October 10, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

Description

An attacker that has gained access to certain private information can use this to act as other user. Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 3.1.3 before 7.1.0

Key dates

Disclosure timeline

May 12, 2023 CVE published

October 10, 2024 Record updated