Описание
BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result in Account Takeover if a victim follows a spoofed password-reset link.
BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result in Account Takeover if a victim follows a spoofed password-reset link.
EPSS
Процентиль: 66%
0.0051
Низкий
CVE ID
Связанные уязвимости
CVSS3: 8.8
nvd
больше 5 лет назад
BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result in Account Takeover if a victim follows a spoofed password-reset link.
EPSS
Процентиль: 66%
0.0051
Низкий