You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user-russian@openmeetings.apache.org by Maxim Solodovnik <so...@apache.org> on 2021/03/13 09:32:28 UTC

[ANNOUNCE] CVE-2021-27576 - Apache OpenMeetings: bandwidth can be overloaded with public web service

Severity: Low

Vendor: The Apache Software Foundation

Versions Affected: 4.0.0 - 5.1.0

Description: NetTest web service can be used to overload the bandwidth
of the server
CVE-2021-27576

The issue was fixed in 6.0.0
All users are recommended to upgrade to Apache OpenMeetings 6.0.0

Credit: This issue was identified by Trung Le, Chi Tran, Linh Cua