mumble: Remote code execution vulnerability (CVE-2021-27229)
Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text.
References:
Patch:
https://github.com/mumble-voip/mumble/commit/e59ee87abe249f345908c7d568f6879d16bfd648
Affected branches:
-
master (2fabc9f2) -
3.13-stable
Edited by Leo