CVE-2025-64754

Vulnerability Description

Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. This is fixed in version 2.0.10532. No known workarounds are available.

Related Weaknesses (CWE)

CWE-601

References

https://github.com/jitsi/jitsi-meet/security/advisories/GHSA-5fx7-wgcr-fj78

FAQ

What is CVE-2025-64754?

CVE-2025-64754 is a documented vulnerability. Jitsi Meet is an open source video conferencing application. A vulnerability present in versions prior to 2.0.10532 allows attackers to hijack the OAuth authentication window for Microsoft accounts. T...

How severe is CVE-2025-64754?

CVSS scoring is not yet available for CVE-2025-64754. Check NVD for updates.

Is there a patch for CVE-2025-64754?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.