Unrated severityNVD Advisory· Published Apr 14, 2021· Updated Aug 3, 2024
CVE-2021-30477
CVE-2021-30477
Description
An issue was discovered in Zulip Server before 3.4. A bug in the implementation of replies to messages sent by outgoing webhooks to private streams meant that an outgoing webhook bot could be used to send messages to private streams that the user was not intended to be able to send messages to.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Zulip/Zulip Serverdescription
- Range: <3.4
Patches
Vulnerability mechanics
References
1- blog.zulip.com/2021/04/14/zulip-server-3-4/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.