CVE-2021-27229 log
Source |
|
Severity | Medium |
Remote | Yes |
Type | Arbitrary code execution |
Description | Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text. |
Group | Package | Affected | Fixed | Severity | Status | Ticket |
---|---|---|---|---|---|---|
AVG-1576 | mumble | 1.3.3-5 | 1.3.4-1 | Medium | Fixed |
Date | Advisory | Group | Package | Severity | Type |
---|---|---|---|---|---|
20 Feb 2021 | ASA-202102-32 | AVG-1576 | mumble | Medium | arbitrary code execution |
References |
---|
https://github.com/mumble-voip/mumble/pull/4733 https://github.com/mumble-voip/mumble/commit/e59ee87abe249f345908c7d568f6879d16bfd648 |