CyberSec.Space Logo
Back to CVE Browser

CVE-2020-11878

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0520%
EPSS Percentile20.07th
PublishedApr 17, 2020
Last ModifiedNov 21, 2024

Vulnerability Description

The Jitsi Meet (aka docker-jitsi-meet) stack on Docker before stable-4384-1 uses default passwords (such as passw0rd) for system accounts.

Affected Platforms (CPE)

πŸ“¦
Jitsi

Meet

< stable-4384-1

References & Advisories

πŸ”— https://github.com/jitsi/docker-jitsi-meet/blob/master/CHANGELOG.md#stable-4384-1
πŸ”— https://github.com/jitsi/docker-jitsi-meet/compare/stable-4384...stable-4384-1
πŸ”— https://github.com/jitsi/docker-jitsi-meet/blob/master/CHANGELOG.md#stable-4384-1
πŸ”— https://github.com/jitsi/docker-jitsi-meet/compare/stable-4384...stable-4384-1

Related Vulnerabilities

CVE-2011-091510.0

Stack-based buffer overflow in nrouter.exe in IBM Lotus Domino before 8.5.3 allows remote attackers to execute arbitrary code via ...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...

CVE-2020-138779.8

SQL Injection issues in various ASPX pages of ResourceXpress Meeting Monitor 4.9 could lead to remote code execution and informati...

CVE-2018-157159.8

Zoom clients on Windows (before version 4.1.34814.1119), Mac OS (before version 4.1.34801.1116), and Linux (2.4.129780.0915 and be...