Vulnerabilities > Zulip > Zulip > 2.0.3

DATE CVE VULNERABILITY TITLE RISK
2023-05-19 CVE-2023-28623 Missing Authorization vulnerability in Zulip
Zulip is an open-source team collaboration tool with unique topic-based threading.
network
high complexity
zulip CWE-862
3.7
2023-05-19 CVE-2023-32677 Missing Authorization vulnerability in Zulip
Zulip is an open-source team collaboration tool with unique topic-based threading.
network
high complexity
zulip CWE-862
3.1
2022-07-22 CVE-2022-31168 Incorrect Authorization vulnerability in Zulip
Zulip is an open source team chat tool.
network
low complexity
zulip CWE-863
8.8
2022-02-26 CVE-2021-3967 Unspecified vulnerability in Zulip
Improper Access Control in GitHub repository zulip/zulip prior to 4.10.
network
low complexity
zulip
6.5
2022-01-25 CVE-2021-43799 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in Zulip
Zulip is an open-source team collaboration tool.
network
low complexity
zulip CWE-338
5.0
2022-01-20 CVE-2021-3866 Cross-site Scripting vulnerability in Zulip
Cross-site Scripting (XSS) - Stored in GitHub repository zulip/zulip more than and including 44f935695d452cc3fb16845a0c6af710438b153d and prior to 3eb2791c3e9695f7d37ffe84e0c2184fae665cb6.
network
zulip CWE-79
3.5
2021-12-02 CVE-2021-43791 Insufficient Session Expiration vulnerability in Zulip
Zulip is an open source group chat application that combines real-time chat with threaded conversations.
network
low complexity
zulip CWE-613
5.0
2021-10-07 CVE-2021-41115 Unspecified vulnerability in Zulip
Zulip is an open source team chat server.
network
low complexity
zulip
6.5