Security Advisory

CVE-2020-14215

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-21 04:34:38
Last updated 2024-08-04 12:39:36
Assigner mitre
State PUBLISHED

Description

Zulip Server before 2.1.5 has Incorrect Access Control because 0198_preregistrationuser_invited_as adds the administrator role to invitations.