Web conferencing software Apache OpenMeetings has a number of security holes that might be exploited by bad actors to take over admin accounts and launch malicious malware on unprotected servers.
According to Stefan Schiller, a researcher with Sonar, “attackers can bring the application into an unexpected state, which allows them to take over any user account, including the admin account,” in a study shared with The Hacker News.
The ability to execute arbitrary code on the Apache OpenMeetings server is another vulnerability that can be exploited using the newly acquired admin capabilities read more Apache OpenMeetings Web Conferencing Tool Exposed to Critical Vulnerabilities.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.