MidnightBSD

Advisories for vinteo

CVE-2022-48020

Vinteo VCC v2.36.4 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the conference parameter. This vulnerability allows attackers to inject arbitrary code which will be executed by the victim user's browser.

Products Affected

Vendor Product Version
vinteo video_core 2.36.4