CNNVD-202510-1229 Information

CNNVD ID

CNNVD-202510-1229

Related CVE

CVE-2025-61601

• CNNVD Published: 2025-10-09

Description (Chinese)

BigBlueButton是BigBlueButton社区的一套开源的Web会议系统。 BigBlueButton 3.0.13之前版本存在安全漏洞，该漏洞源于对polling功能的Choices响应类型处理不当，可能导致拒绝服务攻击。

Description (English)

BigBlueButton is an open-source Web meeting system for the BigBlueButton community. There was a security loophole in the pre-BigBrueButton 3.0.13 version, which stemmed from the mishandling of the Choices response type for the Polling function, which could lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

BigBlueButton

Published

2025-10-09

Last Modified

2026-02-24

References

https://github.com/bigbluebutton/bigbluebutton/pull/23662 https://github.com/bigbluebutton/bigbluebutton/security/advisories/GHSA-73j3-v3fq-fqx5 https://www.youtube.com/watch?v=BwROSVIYjOY https://access.redhat.com/security/cve/cve-2025-61601

Patch

https://bigbluebutton.org/