CVE-2023-28936: 
Java vulnerability analysis and mitigation

Apache OpenMeetings, a web conferencing application, was found to contain a security vulnerability (CVE-2023-28936) that affects versions from 2.0.0 to 7.1.0. The vulnerability allows attackers to access arbitrary recordings and rooms due to insufficient checking of invitation hashes (NVD, SonarSource).

The vulnerability stems from a weak hash comparison implementation where the LIKE operator is used instead of strict comparison in SQL queries. The system uses the LIKE operator when retrieving Invitation objects from the database, which allows wildcards to be used in hash values. For example, using '5%' as a hash value would return all Invitation objects with hashes beginning with five. This implementation flaw makes it possible for attackers to enumerate valid invitation hashes and gain unauthorized access (SonarSource). The vulnerability has been assigned a CVSS v3.1 Base Score of 5.3 (Medium) with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N (NVD).

The vulnerability enables attackers to access arbitrary recordings and rooms within the OpenMeetings system. When combined with other vulnerabilities, it could lead to account takeover and potentially allow attackers to gain admin privileges, giving them control over user management, room settings, and session termination capabilities (SonarSource).

The vulnerability has been fixed in Apache OpenMeetings version 7.1.0. The patch implements additional validation to ensure that retrieved hash values completely match the provided value, preventing the use of wildcard characters in hash comparisons. Organizations using affected versions should upgrade to version 7.1.0 or later to address this security issue (SonarSource).