Skip to content

Cross-site scripting vulnerability in Zulip Server development branch via tooltip

Moderate
andersk published GHSA-fc77-h3jc-6mfv Mar 1, 2022

Package

Zulip Server (Application)

Affected versions

main branch (2021-06-03 to 2022-03-01)

Patched versions

main branch (2022-03-01)

Description

Impact

The main development branch of Zulip Server from June 2021 and later is vulnerable to a cross-site scripting vulnerability on the recent topics page. An attacker could maliciously craft a full name for their account and send messages to a topic with several participants; a victim who then opens an overflow tooltip including this full name on the recent topics page could trigger execution of JavaScript code controlled by the attacker.

Patches

The vulnerability was fixed in the main branch with commit e090027. Users running a Zulip server from the main branch should upgrade from main again to deploy this fix.

Severity

Moderate
4.6
/ 10

CVSS base metrics

Attack vector
Network
Attack complexity
Low
Privileges required
Low
User interaction
Required
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
None
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N

CVE ID

CVE-2022-23656

Weaknesses