CVE-2021-27576
HIGHApache OpenMeetings 4.0.0-5.x - Denial of Service via NetTest Web Service
Title source: llmDescription
If was found that the NetTest web service can be used to overload the bandwidth of a Apache OpenMeetings server. This issue was addressed in Apache OpenMeetings 6.0.0
References (1)
Core 1
Core References
Mailing List, Vendor Advisory x_refsource_misc
https://lists.apache.org/thread.html/r9bb615bd70a0197368f5f3ffc887162686caeb0b5fc30592a7a871e9%40%3Cuser.openmeetings.apache.org%3E
Scores
CVSS v3
7.5
EPSS
0.0450
EPSS Percentile
89.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
Status
published
Products (2)
apache/openmeetings
4.0.0 - 6.0.0
org.apache.openmeetings/openmeetings-parent
4.0.0 - 6.0.0Maven
Published
Mar 15, 2021
Tracked Since
Feb 18, 2026