2 matches found
CVE-2022-35962 Crafted link in Zulip message can cause disclosure of credentials
Zulip is an open source team chat and Zulip Mobile is an app for iOS and Andriod users. In Zulip Mobile through version 27.189, a crafted link in a message sent by an authenticated user could lead to credential disclosure if a user follows the link. A patch was released in version 27.190...
CVE-2022-35962
CVE-2022-35962 affects Zulip Mobile up to version 27.189. A crafted link in a message sent by an authenticated user could disclose credentials when a recipient follows the link. A fix was released in version 27.190. Affected: Zulip Mobile (iOS/Android).