CVE-2020-14215

Опубликовано: 21 авг. 2020

Источник: debian

Описание

Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.

Пакет	Статус	Версия исправления	Релиз	Тип
zulip-server	itp			package

CVE-2020-14215

CVSS3: 7.5

nvd

больше 5 лет назад

Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.

GHSA-cwgg-2v4v-j88m

github

больше 3 лет назад

Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.