Known vulnerabilities in Zulip Zulip Server 4.2

Vendor: Zulip
Website: https://zulipchat.com
Total Security Bulletins: 16

Security bulletins (16)

Secuity bulletin Severity Status Published
SB20250716105: Cross-site scripting in Zulip Server Low
Patched
16.07.2025
SB2025033108: Multiple vulnerabilities in Zulip Server Low
Patched
31.03.2025
SB2025033107: Information disclosure in Zulip Server Low
Patched
31.03.2025
SB2024032026: Improper access control in Zulip Server Low
Patched
20.03.2024
SB2023111746: Improper access control in Zulip Server Low
Patched
17.11.2023
SB2023082527: Improper authorization in Zulip Server Medium
Patched
25.08.2023
SB2023052002: Multiple vulnerabilities in Zulip Server Medium
Patched
20.05.2023
SB2022072827: Information disclosure in Zulip Server Medium
Patched
28.07.2022
SB2022062226: Information disclosure in Zulip Server Medium
Patched
22.06.2022
SB2022031619: Race condition in Zulip server Medium
Patched
16.03.2022
SB2022030410: Cross-site scripting in Zulip Server Low
Patched
04.03.2022
SB2022022802: Multiple vulnerabilities in Zulip server Medium
Patched
28.02.2022
SB2022012511: Remote code execution in Zulip Server High
Patched Public exploit
25.01.2022
SB2021120203: Insufficient Session Expiration in Zulip Medium
Patched
02.12.2021
SB2021100506: Denial of service in Zulip Server Low
Patched
05.10.2021
SB2021072602: Denial of service in Zulip Server Medium
Patched
26.07.2021