Main Vulnerability Database SB2019112224

SB2019112224 - Improper Authentication in Zulip Server

Published: November 22, 2019 Updated: July 17, 2020

Security Bulletin ID SB2019112224

Severity

High

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Improper Authentication (CVE-ID: CVE-2019-18933)

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

In Zulip Server versions from 1.7.0 to before 2.0.7, a bug in the new user signup process meant that users who registered their account using social authentication (e.g., GitHub or Google SSO) in an organization that also allows password authentication could have their personal API key stolen by an unprivileged attacker, allowing nearly full access to the user's account.

Remediation

Install update from vendor's website.

References

https://blog.zulip.org/2019/11/21/zulip-2-0-7-security-release/
https://github.com/zulip/zulip/commit/0c2cc41d2e40807baa5ee2c72987ebfb64ea2eb6