Apache OpenMeetings Security Update Advisory (CVE-2024-54676)

Jan 10 2025

Overview

We have released a security update to address a vulnerability in Apache OpenMeetings. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2024-54676

Apache OpenMeetings versions: 2.1.0 through 8.0.0 (excluded)

Resolved Vulnerabilities

Untrusted data deserialization vulnerability (CVE-2024-54676)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-54676

Apache OpenMeetings Version: 8.0.0

References

[1] CVE-2024-54676: Apache OpenMeetings: Deserialization of untrusted data in cluster mode
https://lists.apache.org/thread/o0k05jxrt5tp4nm45lj14yfjxmg67m95

Apache OpenMeetings Security Update Advisory (CVE-2024-54676)

Mozilla Products January 2025 1st Security Update Advisory

HPE Aruba Networking product security update advisory

Tags:

Mozilla Products January 2025 1st Security Update Advisory

HPE Aruba Networking product security update advisory