VYPR
Unrated severityNVD Advisory· Published Nov 19, 2020· Updated Aug 4, 2024

CVE-2020-28954

CVE-2020-28954

Description

web/controllers/ApiController.groovy in BigBlueButton before 2.2.29 lacks certain parameter sanitization, as demonstrated by accepting control characters in a user name.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.