CVE-2017-7673: Apache OpenMeetings has Inadequate Encryption Strength

Severity: Critical

CVSS Score: 9.8

Apache OpenMeetings 1.0.0 uses not very strong cryptographic storage, captcha is not used in registration and forget password dialogs and auth forms missing brute force protection.