Information Disclosure Vulnerability in Apache OpenMeetings by Apache
CVE-2017-7683

7.5HIGH

Key Information:

Vendor: Apache
Status: Apache Openmeetings
Vendor: CVE Published:; 17 July 2017

What is CVE-2017-7683?

Apache OpenMeetings 1.0.0 is susceptible to an information disclosure vulnerability that reveals sensitive system details, such as the Tomcat version and detailed error stack traces. This exposure can assist attackers in crafting targeted exploits, making it crucial for administrators to address this issue promptly to maintain system integrity.

Affected Version(s)

Apache OpenMeetings 1.0.0

References

http://markmail.org/message/hint6fp66lijqdvu

mailing-listx_refsource_MLIST

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 17, 2017
Vulnerability Reserved
Apr 11, 2017