Medium severity4.3NVD Advisory· Published Oct 21, 2020· Updated Jun 17, 2026
CVE-2020-27612
CVE-2020-27612
Description
Greenlight in BigBlueButton through 2.2.28 places usernames in room URLs, which may represent an unintended information leak to users in a room, or an information leak to outsiders if any user publishes a screenshot of a browser window.
Affected products
2- BigBlueButton/Greenlightdescription
- Range: <=2.2.28
Patches
Vulnerability mechanics
References
1- docs.bigbluebutton.org/admin/privacy.htmlnvdNot Applicable
News mentions
0No linked articles in our index yet.