Security Advisory

CVE-2020-26163

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-30 15:28:54

Last updated 2024-08-04 15:49:07

Assigner mitre

State PUBLISHED

Description

BigBlueButton Greenlight before 2.5.6 allows HTTP header (Host and Origin) attacks, which can result in Account Takeover if a victim follows a spoofed password-reset link.

← Browse all CVEs View on cve.org ↗