CVE-2022-36736

Name of the Vulnerable Software and Affected Versions Jitsi version 2.10.5550

Description The issue allows attackers to perform a clickjacking attack via a crafted HTTP request in the web UI. It is noted that this is disputed by the vendor.

Recommendations For Jitsi version 2.10.5550, as a temporary workaround, consider implementing additional security measures to prevent clickjacking attacks, such as using framebusting techniques or restricting access to sensitive areas of the web UI. At the moment, there is no information about a newer version that contains a fix for this vulnerability.