Zulip Server 1.5.1 and below suffer from an error in the implementation of the invitebyadmins_only setting in the Zulip group chat application server that allowed an authenticated user to invite other users to join a Zulip organization even if the organization was configured to prevent this.
{
"source": [
"CPE_STRING",
"REFERENCES"
],
"cpe": [
"cpe:2.3:a:zulip:zulip_server:1.3.0:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.1:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.2:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.3:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.4:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.6:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.7:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.8:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.9:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.10:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.11:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.12:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.3.13:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.4.0:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.4.1:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.4.2:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.4.3:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.5.0:*:*:*:*:*:*:*",
"cpe:2.3:a:zulip:zulip_server:1.5.1:*:*:*:*:*:*:*"
],
"extracted_events": [
{
"introduced": "1.3.0"
},
{
"last_affected": "1.3.0"
},
{
"introduced": "1.3.1"
},
{
"last_affected": "1.3.1"
},
{
"introduced": "1.3.2"
},
{
"last_affected": "1.3.2"
},
{
"introduced": "1.3.3"
},
{
"last_affected": "1.3.3"
},
{
"introduced": "1.3.4"
},
{
"last_affected": "1.3.4"
},
{
"introduced": "1.3.6"
},
{
"last_affected": "1.3.6"
},
{
"introduced": "1.3.7"
},
{
"last_affected": "1.3.7"
},
{
"introduced": "1.3.8"
},
{
"last_affected": "1.3.8"
},
{
"introduced": "1.3.9"
},
{
"last_affected": "1.3.9"
},
{
"introduced": "1.3.10"
},
{
"last_affected": "1.3.10"
},
{
"introduced": "1.3.11"
},
{
"last_affected": "1.3.11"
},
{
"introduced": "1.3.12"
},
{
"last_affected": "1.3.12"
},
{
"introduced": "1.3.13"
},
{
"last_affected": "1.3.13"
},
{
"introduced": "1.4.0"
},
{
"last_affected": "1.4.0"
},
{
"introduced": "1.4.1"
},
{
"last_affected": "1.4.1"
},
{
"introduced": "1.4.2"
},
{
"last_affected": "1.4.2"
},
{
"introduced": "1.4.3"
},
{
"last_affected": "1.4.3"
},
{
"introduced": "1.5.0"
},
{
"last_affected": "1.5.0"
},
{
"introduced": "1.5.1"
},
{
"last_affected": "1.5.1"
}
]
}