VYPR
High severity8.8NVD Advisory· Published Aug 7, 2019· Updated Jun 17, 2026

CVE-2019-14432

CVE-2019-14432

Description

Incorrect authentication of application WebSocket connections in Loom Desktop for Mac up to 0.16.0 allows remote code execution from either malicious JavaScript in a browser or hosts on the same network, during periods in which a user is recording a video with the application. The same attack vector can be used to crash the application at any time.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Loom/Loom Desktopdescription
  • Loom/Loomllm-fuzzy
    Range: <=0.16.0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.