Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Zulip Subscribe
Filtered by product Zulip Desktop
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-10858 1 Zulip 1 Zulip Desktop 2021-07-21 5.0 MEDIUM 5.3 MEDIUM
Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.
CVE-2020-10857 1 Zulip 1 Zulip Desktop 2021-02-08 7.5 HIGH 9.8 CRITICAL
Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution.