Memory Leak Vulnerability in Zulip Affected Versions 8.0 to 8.3
CVE-2024-36612

7.5HIGH

Key Information:

Vendor: Zulip
Status: Zulip
Vendor: CVE Published:; 29 November 2024

What is CVE-2024-36612?

Zulip versions 8.0 through 8.3 are susceptible to a memory leak vulnerability due to improper handling of popover functionality. This issue may allow excessive memory consumption, potentially leading to performance degradation or outages. Users and administrators are advised to assess their current deployments and apply available updates to mitigate the risk. Detailed insights into the affected code can be found in the project's commit history and specific source files.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://github.com/zulip/zulip/commit/0a90a13becbf0338a8f...

https://github.com/zulip/zulip/blob/8.3/web/src/click_han...

https://gist.github.com/1047524396/f7ff51d24ebbb29e21dfb7...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 29, 2024
Vulnerability Reserved
May 30, 2024

JSON

Zulip

What is CVE-2024-36612?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.