Количество 3
Количество 3
CVE-2021-30478
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the same Zulip installation.
CVE-2021-30478
An issue was discovered in Zulip Server before 3.4. A bug in the imple ...
GHSA-7f6g-27rf-r8f2
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the same Zulip installation.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2021-30478 An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the same Zulip installation. | CVSS3: 4.3 | 0% Низкий | почти 5 лет назад |
| CVE-2021-30478 An issue was discovered in Zulip Server before 3.4. A bug in the imple ... | CVSS3: 4.3 | 0% Низкий | почти 5 лет назад |
| GHSA-7f6g-27rf-r8f2 An issue was discovered in Zulip Server before 3.4. A bug in the implementation of the can_forge_sender permission (previously is_api_super_user) resulted in users with this permission being able to send messages appearing as if sent by a system bot, including to other organizations hosted by the same Zulip installation. | CVSS3: 4.3 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу