CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-42803

BigBlueButton is an open-source virtual classroom. BigBlueButton prior to version 2.6.0-beta.2 is vulnerable to unrestricted file upload, where the insertDocument API call does not validate the given file extension before saving the file, and does not remove it in case of validation failures. BigBlueButton 2.6.0-beta.2 contains a patch. There are no known workarounds.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.5%

CVSS Severity

CVSS v3 Score 5.3

References

Products affected by CVE-2023-42803

Bigbluebutton » Bigbluebutton » Version: N/A

cpe:2.3:a:bigbluebutton:bigbluebutton:-
Bigbluebutton » Bigbluebutton » Version: 0.7

cpe:2.3:a:bigbluebutton:bigbluebutton:0.7
Bigbluebutton » Bigbluebutton » Version: 0.71

cpe:2.3:a:bigbluebutton:bigbluebutton:0.71
Bigbluebutton » Bigbluebutton » Version: 0.8

cpe:2.3:a:bigbluebutton:bigbluebutton:0.8
Bigbluebutton » Bigbluebutton » Version: 0.81

cpe:2.3:a:bigbluebutton:bigbluebutton:0.81
Bigbluebutton » Bigbluebutton » Version: 0.9.0

cpe:2.3:a:bigbluebutton:bigbluebutton:0.9.0
Bigbluebutton » Bigbluebutton » Version: 0.9.1

cpe:2.3:a:bigbluebutton:bigbluebutton:0.9.1
Bigbluebutton » Bigbluebutton » Version: 0.9.2

cpe:2.3:a:bigbluebutton:bigbluebutton:0.9.2
Bigbluebutton » Bigbluebutton » Version: 1.0.0

cpe:2.3:a:bigbluebutton:bigbluebutton:1.0.0
Bigbluebutton » Bigbluebutton » Version: 1.1.0

cpe:2.3:a:bigbluebutton:bigbluebutton:1.1.0
Bigbluebutton » Bigbluebutton » Version: 2.0

cpe:2.3:a:bigbluebutton:bigbluebutton:2.0
Bigbluebutton » Bigbluebutton » Version: 2.2.0

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.0
Bigbluebutton » Bigbluebutton » Version: 2.2.1

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.1
Bigbluebutton » Bigbluebutton » Version: 2.2.10

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.10
Bigbluebutton » Bigbluebutton » Version: 2.2.11

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.11
Bigbluebutton » Bigbluebutton » Version: 2.2.12

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.12
Bigbluebutton » Bigbluebutton » Version: 2.2.14

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.14
Bigbluebutton » Bigbluebutton » Version: 2.2.15

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.15
Bigbluebutton » Bigbluebutton » Version: 2.2.16

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.16
Bigbluebutton » Bigbluebutton » Version: 2.2.17

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.17
Bigbluebutton » Bigbluebutton » Version: 2.2.18

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.18
Bigbluebutton » Bigbluebutton » Version: 2.2.19

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.19
Bigbluebutton » Bigbluebutton » Version: 2.2.2

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.2
Bigbluebutton » Bigbluebutton » Version: 2.2.20

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.20
Bigbluebutton » Bigbluebutton » Version: 2.2.21

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.21
Bigbluebutton » Bigbluebutton » Version: 2.2.22

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.22
Bigbluebutton » Bigbluebutton » Version: 2.2.23

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.23
Bigbluebutton » Bigbluebutton » Version: 2.2.24

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.24
Bigbluebutton » Bigbluebutton » Version: 2.2.25

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.25
Bigbluebutton » Bigbluebutton » Version: 2.2.26

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.26
Bigbluebutton » Bigbluebutton » Version: 2.2.27

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.27
Bigbluebutton » Bigbluebutton » Version: 2.2.28

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.28
Bigbluebutton » Bigbluebutton » Version: 2.2.29

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.29
Bigbluebutton » Bigbluebutton » Version: 2.2.3

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.3
Bigbluebutton » Bigbluebutton » Version: 2.2.30

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.30
Bigbluebutton » Bigbluebutton » Version: 2.2.31

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.31
Bigbluebutton » Bigbluebutton » Version: 2.2.4

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.4
Bigbluebutton » Bigbluebutton » Version: 2.2.5

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.5
Bigbluebutton » Bigbluebutton » Version: 2.2.6

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.6
Bigbluebutton » Bigbluebutton » Version: 2.2.7

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.7
Bigbluebutton » Bigbluebutton » Version: 2.2.8

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.8
Bigbluebutton » Bigbluebutton » Version: 2.2.9

cpe:2.3:a:bigbluebutton:bigbluebutton:2.2.9
Bigbluebutton » Bigbluebutton » Version: 2.3

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3
Bigbluebutton » Bigbluebutton » Version: 2.3.0

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.0
Bigbluebutton » Bigbluebutton » Version: 2.3.1

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.1
Bigbluebutton » Bigbluebutton » Version: 2.3.10

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.10
Bigbluebutton » Bigbluebutton » Version: 2.3.11

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.11
Bigbluebutton » Bigbluebutton » Version: 2.3.12

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.12
Bigbluebutton » Bigbluebutton » Version: 2.3.13

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.13
Bigbluebutton » Bigbluebutton » Version: 2.3.14

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.14
Bigbluebutton » Bigbluebutton » Version: 2.3.15

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.15
Bigbluebutton » Bigbluebutton » Version: 2.3.16

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.16
Bigbluebutton » Bigbluebutton » Version: 2.3.17

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.17
Bigbluebutton » Bigbluebutton » Version: 2.3.2

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.2
Bigbluebutton » Bigbluebutton » Version: 2.3.3

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.3
Bigbluebutton » Bigbluebutton » Version: 2.3.4

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.4
Bigbluebutton » Bigbluebutton » Version: 2.3.5

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.5
Bigbluebutton » Bigbluebutton » Version: 2.3.6

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.6
Bigbluebutton » Bigbluebutton » Version: 2.3.7

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.7
Bigbluebutton » Bigbluebutton » Version: 2.3.8

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.8
Bigbluebutton » Bigbluebutton » Version: 2.3.9

cpe:2.3:a:bigbluebutton:bigbluebutton:2.3.9
Bigbluebutton » Bigbluebutton » Version: 2.4

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4
Bigbluebutton » Bigbluebutton » Version: 2.4.0

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.0
Bigbluebutton » Bigbluebutton » Version: 2.4.1

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.1
Bigbluebutton » Bigbluebutton » Version: 2.4.2

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.2
Bigbluebutton » Bigbluebutton » Version: 2.4.3

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.3
Bigbluebutton » Bigbluebutton » Version: 2.4.4

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.4
Bigbluebutton » Bigbluebutton » Version: 2.4.5

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.5
Bigbluebutton » Bigbluebutton » Version: 2.4.6

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.6
Bigbluebutton » Bigbluebutton » Version: 2.4.7

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.7
Bigbluebutton » Bigbluebutton » Version: 2.4.9

cpe:2.3:a:bigbluebutton:bigbluebutton:2.4.9
Bigbluebutton » Bigbluebutton » Version: 2.5

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5
Bigbluebutton » Bigbluebutton » Version: 2.5.1

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.1
Bigbluebutton » Bigbluebutton » Version: 2.5.10

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.10
Bigbluebutton » Bigbluebutton » Version: 2.5.11

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.11
Bigbluebutton » Bigbluebutton » Version: 2.5.12

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.12
Bigbluebutton » Bigbluebutton » Version: 2.5.14

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.14
Bigbluebutton » Bigbluebutton » Version: 2.5.15

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.15
Bigbluebutton » Bigbluebutton » Version: 2.5.16

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.16
Bigbluebutton » Bigbluebutton » Version: 2.5.17

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.17
Bigbluebutton » Bigbluebutton » Version: 2.5.18

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.18
Bigbluebutton » Bigbluebutton » Version: 2.5.2

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.2
Bigbluebutton » Bigbluebutton » Version: 2.5.3

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.3
Bigbluebutton » Bigbluebutton » Version: 2.5.4

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.4
Bigbluebutton » Bigbluebutton » Version: 2.5.5

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.5
Bigbluebutton » Bigbluebutton » Version: 2.5.6

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.6
Bigbluebutton » Bigbluebutton » Version: 2.5.7

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.7
Bigbluebutton » Bigbluebutton » Version: 2.5.8

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.8
Bigbluebutton » Bigbluebutton » Version: 2.5.9

cpe:2.3:a:bigbluebutton:bigbluebutton:2.5.9
Bigbluebutton » Bigbluebutton » Version: 2.6.0

cpe:2.3:a:bigbluebutton:bigbluebutton:2.6.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-42803

Products

Pricing

Contact Us