CVE-2017-7673

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0310%

EPSS Percentile39.66th

Published2017年7月17日

Last Modified2026年5月13日

Vulnerability Description

Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.

Affected Platforms (CPE)

📦

Apache

Openmeetings

= 1.0.0

📦

Apache

Openmeetings

= 2.0

📦

Apache

Openmeetings

= 2.1

📦

Apache

Openmeetings

= 2.1.1

📦

Apache

Openmeetings

= 2.2.0

📦

Apache

Openmeetings

= 3.0.0

📦

Apache

Openmeetings

= 3.0.1

📦

Apache

Openmeetings

= 3.0.2

📦

Apache

Openmeetings

= 3.0.3

📦

Apache

Openmeetings

= 3.0.4

📦

Apache

Openmeetings

= 3.0.5

📦

Apache

Openmeetings

= 3.0.6

📦

Apache

Openmeetings

= 3.0.7

📦

Apache

Openmeetings

= 3.1.0

📦

Apache

Openmeetings

= 3.1.1

📦

Apache

Openmeetings

= 3.1.2

📦

Apache

Openmeetings

= 3.1.3

📦

Apache

Openmeetings

= 3.1.4

📦

Apache

Openmeetings

= 3.1.5

📦

Apache

Openmeetings

= 3.2.0

📦

Apache

Openmeetings

= 3.2.1

References & Advisories

🔗 http://markmail.org/message/3hshl26omwjo6c5i

🔗 http://www.securityfocus.com/bid/99587

🔗 http://markmail.org/message/3hshl26omwjo6c5i

🔗 http://www.securityfocus.com/bid/99587

Vulnerability Description

Affected Platforms (CPE)

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

Openmeetings

References & Advisories

関連する脆弱性情報