CVE-2022-26497
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2022-26497
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2022-26497.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2022-26497
- Published
- 2022-06-02T18:15:09Z
- Modified
- 2025-01-08T08:54:18.362242Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
BigBlueButton Greenlight 2.11.1 allows XSS. A threat actor could have a username containing a JavaScript payload. The payload gets executed in the browser of the victim in the "Share room access" dialog if the victim has shared access to the particular room with the attacker previously.
- References
Affected packages
Git / github.com/bigbluebutton/greenlight
Affected ranges
- Type
- GIT
- Repo
- https://github.com/bigbluebutton/greenlight
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedLast affected
Affected versions
release-2.*
release-2.0.0
release-2.0.1
release-2.0.2
release-2.0.3
release-2.0.4
release-2.0.5
release-2.0.6
release-2.0.7
release-2.0.8
release-2.0.9
release-2.1.0
release-2.1.1
release-2.1.2
release-2.1.3
release-2.10.0
release-2.10.0.1
release-2.10.0.1-beta.1
release-2.10.0.2
release-2.10.0.3
release-2.11.0
release-2.11.1
release-2.2.0
release-2.2.1
release-2.2.2
release-2.2.3
release-2.2.4
release-2.3.0
release-2.3.1
release-2.3.2
release-2.3.3
release-2.3.4
release-2.4
release-2.4-b1
release-2.4-b2
release-2.4-b3
release-2.4-rc1
release-2.4.1
release-2.4.2
release-2.4.2-rc.1
release-2.5
release-2.5-rc.1
release-2.5.1
release-2.5.2
release-2.5.3
release-2.5.4
release-2.5.5
release-2.5.6
release-2.6
release-2.6.1
release-2.6.2
release-2.6.3
release-2.6.4
release-2.6.5
release-2.7
release-2.7.1
release-2.7.10
release-2.7.11
release-2.7.12
release-2.7.13
release-2.7.14
release-2.7.15
release-2.7.15.1
release-2.7.16
release-2.7.17
release-2.7.18
release-2.7.19
release-2.7.2
release-2.7.20
release-2.7.3
release-2.7.4
release-2.7.5
release-2.7.6
release-2.7.7
release-2.7.8
release-2.7.9
release-2.8
release-2.8.1
release-2.8.2
release-2.8.2.1
release-2.8.2.2
release-2.8.3
release-2.8.4
release-2.8.5
release-2.8.6
release-2.8.7
release-2.9.0
release-2.9.1
release-2.9.2
release-2.9.3-beta.1
release-2.9.3-beta.2
release-2.9.3-beta.3