BigBlueButton before 2.2.5 allows remote attackers to obtain sensitive files via Local File Inclusion.
References
Link | Resource |
---|---|
https://cwe.mitre.org/data/definitions/23.html | Third Party Advisory |
https://github.com/bigbluebutton/bigbluebutton/compare/v2.2.4...v2.2.5 | Patch Third Party Advisory |
https://github.com/tchenu/CVE-2020-12112 | Exploit Third Party Advisory |
https://twitter.com/bigbluebutton/status/1252706369486180353 | Third Party Advisory |
https://twitter.com/thibeault_chenu/status/1249976515917422593 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-04-23T17:53:59
Updated: 2022-07-10T21:23:50
Reserved: 2020-04-23T00:00:00
Link: CVE-2020-12112
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-04-23T18:15:11.717
Modified: 2022-10-05T18:38:07.303
Link: CVE-2020-12112
JSON object: View
Redhat Information
No data.
CWE