Vulnerabilities > Zulip > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-01-25 CVE-2024-21630 Missing Authorization vulnerability in Zulip Server
Zulip is an open-source team collaboration tool.
network
low complexity
zulip CWE-862
4.3
2023-11-16 CVE-2023-47642 Unspecified vulnerability in Zulip Server
Zulip is an open-source team collaboration tool.
network
low complexity
zulip
4.3
2023-08-25 CVE-2023-32678 Improper Authorization vulnerability in Zulip Server
Zulip is an open-source team collaboration tool with topic-based threading that combines email and chat.
network
low complexity
zulip CWE-285
6.5
2023-05-30 CVE-2023-33186 Cross-site Scripting vulnerability in Zulip Server 7.0
Zulip is an open-source team collaboration tool with unique topic-based threading that combines the best of email and chat to make remote work productive and delightful.
network
low complexity
zulip CWE-79
6.1
2023-02-07 CVE-2023-22735 Interpretation Conflict vulnerability in Zulip Server 20230109
Zulip is an open-source team collaboration tool.
network
low complexity
zulip CWE-436
4.6
2022-07-12 CVE-2022-31134 Unrestricted Upload of File with Dangerous Type vulnerability in Zulip Server
Zulip is an open-source team collaboration tool.
network
low complexity
zulip CWE-434
4.0
2022-03-16 CVE-2022-24751 Race Condition vulnerability in Zulip
Zulip is an open source group chat application.
network
zulip CWE-362
5.8
2022-02-26 CVE-2021-3967 Unspecified vulnerability in Zulip
Improper Access Control in GitHub repository zulip/zulip prior to 4.10.
network
low complexity
zulip
6.5
2022-01-25 CVE-2021-43799 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Zulip
Zulip is an open-source team collaboration tool.
network
low complexity
zulip CWE-338
5.0
2021-12-02 CVE-2021-43791 Insufficient Session Expiration vulnerability in Zulip
Zulip is an open source group chat application that combines real-time chat with threaded conversations.
network
low complexity
zulip CWE-613
5.0