CVE-2022-29234 : Exploit Details and Defense Strategies
Discover the impact of CVE-2022-29234 on BigBlueButton versions 2.2 to 2.4.1 allowing attackers to exploit a grace period for lock settings in public/private chats.
BigBlueButton from version 2.2 up to versions 2.3.18 and 2.4.1 is affected by a vulnerability where an attacker can send messages to a locked chat within a 5-second grace period after the lock setting. This CVE has a CVSS base score of 4.3, indicating a medium severity level.