CNNVD-202510-1227 Information

CNNVD ID

CNNVD-202510-1227

Related CVE

CVE-2025-61602

• CNNVD Published: 2025-10-09

Description (Chinese)

BigBlueButton是BigBlueButton社区的一套开源的Web会议系统。 BigBlueButton 3.0.13之前版本存在安全漏洞，该漏洞源于发送畸形的reactionEmojiId，可能导致拒绝服务攻击。

Description (English)

BigBlueButton is an open-source Web meeting system for the BigBlueButton community. There was a security loophole in the pre-BigBrueButton 3.0.13 version, which originated from the transmission of deformed reactionEmojiid, which could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

BigBlueButton

Published

2025-10-09

Last Modified

2026-02-24

References

https://github.com/bigbluebutton/bigbluebutton/pull/23651 https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-45j2-m26c-3pcm https://access.redhat.com/security/cve/cve-2025-61602

Patch

https://bigbluebutton.org/