Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of service (client crash).
CVSS Score
3.7
EPSS Score
0.0
Published
2026-03-16
Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text.
CVSS Score
8.8
EPSS Score
0.026
Published
2021-02-16