cvedb.io
CVE-2024-44080
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2024-10-29T22:15:03.633 · Last modified 2026-06-17T07:52:16.190

Summary

In Jitsi Meet before 2.0.9779, the functionality to share an image using giphy was implemented in an insecure way, resulting in clients loading GIFs from any arbitrary URL if a message from another participant contains a URL encoded in the expected format.

Affected products

8x8 — jitsi_meet

Does this affect you?

Add your gear to cvedb and we'll alert you only when 8x8 ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.