VYPR

Hubs Cloud

by Mozilla Corporation

CVEs (2)

  • CVE-2021-29979Aug 2, 2021
    risk 0.00cvss epss 0.01

    Hubs Cloud allows users to download shared content, specifically HTML and JS, which could allow javascript execution in the Hub Cloud instance’s primary hosting domain.*. This vulnerability affects Hubs Cloud < mozillareality/reticulum/1.0.1/20210618012634.

  • CVE-2021-29954Jun 24, 2021
    risk 0.00cvss epss 0.01

    Proxy functionality built into Hubs Cloud’s Reticulum software allowed access to internal URLs, including the metadata service. This vulnerability affects Hubs Cloud < mozillareality/reticulum/1.0.1/20210428201255.