CVE-2021-29979

Summary

Hubs Cloud allows users to download shared content, specifically HTML and JS, which could allow javascript execution in the Hub Cloud instance’s primary hosting domain.*. This vulnerability affects Hubs Cloud < mozillareality/reticulum/1.0.1/20210618012634.

Affected Software

VendorProductVersion RangeStatus
MozillaHubs Cloudunspecified < mozillareality/reticulum/1.0.1/20210618012634affected

Weaknesses

  • Insecure Sharing of HTML/JS Files in Hubs Cloud Reticulum

ADP Enrichment

CVE Program Container

Additional References

References