Vulnerabilities > Zulip > Zulip Desktop

DATE CVE VULNERABILITY TITLE RISK
2021-02-05 CVE-2020-10858 Missing Authorization vulnerability in Zulip Desktop
Zulip Desktop before 5.0.0 allows attackers to perform recording via the webcam and microphone due to a missing permission request handler.
network
low complexity
zulip CWE-862
5.3
5.3
2021-02-05 CVE-2020-10857 Unspecified vulnerability in Zulip Desktop
Zulip Desktop before 5.0.0 improperly uses shell.openExternal and shell.openItem with untrusted content, leading to remote code execution.
network
low complexity
zulip
critical
 9.8
9.8