Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
•added 2025/05/23 8:34 a.m.•6 views

CVE-2024-21630

Zulip is an open-source team collaboration tool. A vulnerability in version 8.0 is similar to CVE-2023-32677, but applies to multi-use invitations, not single-use invitation links as in the prior CVE. Specifically, it applies when the installation has configured non-admins to be able to invite...

4.3CVSS4.6AI score0.00563EPSS
Exploits0References1
Circl
Circl
•added 2024/01/25 9:26 p.m.•8 views

CVE-2024-21630

creationtimestamp| type| source ---|---|--- 2024-01-25 21:26:43+00:00| seen| https://t.me/ctinow/173801 2024-02-18 18:11:18+00:00| seen| https://t.me/ctinow/187318...

4.3CVSS4.6AI score0.00368EPSS
Exploits0References2
CVE
CVE
•added 2024/01/25 7:30 p.m.•61 views

CVE-2024-21630

CVE-2024-21630 (Zulip) describes a flaw in Zulip 8.0 where non-admins can invite users and create multi‑use invitations, while only admins can invite users to streams. The vulnerability is limited to streams the inviter can already see and is not an arbitrary- stream invite. Version 8.1 fixes the...

4.3CVSS4.2AI score0.00368EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
•added 2024/01/25 7:30 p.m.•7 views

CVE-2024-21630 Zulip non-admins can invite new users to streams they would not otherwise be able to add existing users to

Zulip is an open-source team collaboration tool. A vulnerability in version 8.0 is similar to CVE-2023-32677, but applies to multi-use invitations, not single-use invitation links as in the prior CVE. Specifically, it applies when the installation has configured non-admins to be able to invite...

4.3CVSS4.5AI score0.00368EPSS
Exploits0References5
Rows per page
Query Builder