7.5
CVE-2017-7680
- EPSS 1.25%
- Published 17.07.2017 13:18:29
- Last modified 20.04.2025 01:37:25
- Source security@apache.org
- Teams watchlist Login
- Open Login
Apache OpenMeetings 1.0.0 has an overly permissive crossdomain.xml file. This allows for flash content to be loaded from untrusted domains.
Data is provided by the National Vulnerability Database (NVD)
Apache ≫ Openmeetings Version1.0.0
Apache ≫ Openmeetings Version2.0
Apache ≫ Openmeetings Version2.1
Apache ≫ Openmeetings Version2.1.1
Apache ≫ Openmeetings Version2.2.0
Apache ≫ Openmeetings Version3.0.0
Apache ≫ Openmeetings Version3.0.1
Apache ≫ Openmeetings Version3.0.2
Apache ≫ Openmeetings Version3.0.3
Apache ≫ Openmeetings Version3.0.4
Apache ≫ Openmeetings Version3.0.5
Apache ≫ Openmeetings Version3.0.6
Apache ≫ Openmeetings Version3.0.7
Apache ≫ Openmeetings Version3.1.0
Apache ≫ Openmeetings Version3.1.1
Apache ≫ Openmeetings Version3.1.2
Apache ≫ Openmeetings Version3.1.3
Apache ≫ Openmeetings Version3.1.4
Apache ≫ Openmeetings Version3.1.5
Apache ≫ Openmeetings Version3.2.0
Apache ≫ Openmeetings Version3.2.1
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.25% | 0.775 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|