VYPR
Unrated severityNVD Advisory· Published Mar 18, 2020· Updated Aug 4, 2024

CVE-2020-9443

CVE-2020-9443

Description

Zulip Desktop before 4.0.3 loaded untrusted content in an Electron webview with web security disabled, which can be exploited for XSS in a number of ways. This especially affects Zulip Desktop 2.3.82.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Zulip/Zulip Desktopdescription
  • Zulip/Zulipllm-fuzzy
    Range: <4.0.3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.