Main Vulnerability Database Vulnerabilities #VU60897

Improper access control in Zulip Server - CVE-2022-21706

Published: February 28, 2022

Vulnerability identifier: #VU60897

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-21706

CWE-ID: CWE-284

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Zulip

Affected software:
Zulip Server

Detailed vulnerability description

The vulnerability allows a remote attacker to gain unauthorized access to otherwise restricted functionality.

The vulnerability exists due to a reusable invitation link can be used to join a different organization than the one it was created for. A remote user can join an organization without an invitation and gain elevated pririvleges.

How to mitigate CVE-2022-21706

Install updates from vendor's website.

Sources

https://github.com/zulip/zulip/security/advisories/GHSA-6xmj-2wcm-p2jc
https://blog.zulip.com/2022/02/25/zulip-cloud-invitation-vulnerability/
https://github.com/zulip/zulip/commit/88917019f03860609114082cdc0f31a561503f9e
https://blog.zulip.com/2022/02/25/zulip-server-4-10-security-release/#cve-2022-21706

Improper access control in Zulip Server - CVE-2022-21706

Detailed vulnerability description

How to mitigate CVE-2022-21706

Sources

Please verify you're human