CVE-2023-33244 Information

Description

Obsidian before 1.2.2 allows calls to unintended APIs (for microphone access camera access and desktop notification) via an embedded web page.

Reference

https://forum.obsidian.md/t/obsidian-release-v1-2-2-insider-build/57488 https://vuln.ryotak.net/advisories/66