MEDIUM
Jitsi
CVE published 2017-02-09
CVE-2017-5603
CVE-2017-5603 is a medium-severity Jitsi vulnerability tied to incorrect handling of XEP-0280 Message Carbons. In affected versions, a remote attacker could cause the application to display messages as if they came from another user, including a contact, creating a practical social-engineering risk rather than a code-execution issue.