CVE-2020-14215

Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.

Link	Resource
https://blog.zulip.com/2020/06/17/zulip-server-2-1-5-security-release/	Release Notes Vendor Advisory

Configuration 1

cpe:2.3:a:zulip:zulip_server:*:*:*:*:*:*:*:*

---

Published : 2020-08-21 05:15

Updated : 2021-07-21 11:39

---

NVD link : CVE-2020-14215

Mitre link : CVE-2020-14215

No products.

CWE-269