Back to search
CVE-2025-64754
Published: Nov 13, 2025
Modified: Nov 14, 2025
PUBLISHED
Description
Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available.
| Vendor | Product | Versions |
|---|---|---|
jitsi | jitsi-meet | affected < 2.0.10532 |
Weaknesses (CWE)
References
https://github.com/jitsi/jitsi-meet/security/advisories/GHSA-5fx7-wgcr-fj78
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now