CVE-2023-28326: Apache OpenMeetings missing authentication and can allow user impersonation

Severity: Critical

CVSS Score: 9.8

Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.0.0 before 7.0.0 Description: Attacker can elevate their privileges in any room