CVE Vulnerabilities

CVE-2017-7685

Published: Jul 17, 2017 | Modified: Apr 20, 2025
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Apache OpenMeetings 1.0.0 responds to the following insecure HTTP methods: PUT, DELETE, HEAD, and PATCH.

Affected Software

Name Vendor Start Version End Version
Openmeetings Apache 1.0.0 (including) 1.0.0 (including)
Openmeetings Apache 2.0 (including) 2.0 (including)
Openmeetings Apache 2.1 (including) 2.1 (including)
Openmeetings Apache 2.1.1 (including) 2.1.1 (including)
Openmeetings Apache 2.2.0 (including) 2.2.0 (including)
Openmeetings Apache 3.0.0 (including) 3.0.0 (including)
Openmeetings Apache 3.0.1 (including) 3.0.1 (including)
Openmeetings Apache 3.0.2 (including) 3.0.2 (including)
Openmeetings Apache 3.0.3 (including) 3.0.3 (including)
Openmeetings Apache 3.0.4 (including) 3.0.4 (including)
Openmeetings Apache 3.0.5 (including) 3.0.5 (including)
Openmeetings Apache 3.0.6 (including) 3.0.6 (including)
Openmeetings Apache 3.0.7 (including) 3.0.7 (including)
Openmeetings Apache 3.1.0 (including) 3.1.0 (including)
Openmeetings Apache 3.1.1 (including) 3.1.1 (including)
Openmeetings Apache 3.1.2 (including) 3.1.2 (including)
Openmeetings Apache 3.1.3 (including) 3.1.3 (including)
Openmeetings Apache 3.1.4 (including) 3.1.4 (including)
Openmeetings Apache 3.1.5 (including) 3.1.5 (including)
Openmeetings Apache 3.2.0 (including) 3.2.0 (including)
Openmeetings Apache 3.2.1 (including) 3.2.1 (including)

References