CVE-2020-12637

2020-05-0916:23:46

mitre

www.cve.org

AI Score

9.5

Confidence

High

EPSS

0.002

Percentile

51.4%

JSON

Zulip Desktop before 5.2.0 has Missing SSL Certificate Validation because all validation was inadvertently disabled during an attempt to recognize the ignoreCerts option.

References

blog.zulip.org/2020/05/06/zulip-desktop-5-2-0-security-release/