Fuze, an enterprise-grade voice and video collaboration platform, has patched a vulnerability that exposed recordings of private meetings.
A fix was made server-side by Fuze, and a patch was pushed to its endpoint client apps within 11 days of being privately notified by researchers at Rapid7. Program manager Samuel Huckins said there were two glaring issues that put voice, video and text data recorded between parties at risk. The first is that recordings could be shared without requiring authentication.
Leave a reply