CVE-2023-2000
- EPSS 0.13%
- Veröffentlicht 02.05.2023 09:15:10
- Zuletzt bearbeitet 21.11.2024 07:57:44
Mattermost Desktop App fails to validate a mattermost server redirection and navigates to an arbitrary website
CVE-2016-11064
- EPSS 0.65%
- Veröffentlicht 19.06.2020 20:15:10
- Zuletzt bearbeitet 21.11.2024 02:45:25
An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be executed as code via injection.
CVE-2018-21265
- EPSS 0.2%
- Veröffentlicht 19.06.2020 17:15:13
- Zuletzt bearbeitet 21.11.2024 04:03:19
An issue was discovered in Mattermost Desktop App before 4.0.0. It mishandled the Same Origin Policy for setPermissionRequestHandler (e.g., video, audio, and notifications).
CVE-2019-20861
- EPSS 0.73%
- Veröffentlicht 19.06.2020 15:15:10
- Zuletzt bearbeitet 21.11.2024 04:39:33
An issue was discovered in Mattermost Desktop App before 4.2.2. It allows attackers to execute arbitrary code via a crafted link.
CVE-2019-20856
- EPSS 0.45%
- Veröffentlicht 19.06.2020 15:15:10
- Zuletzt bearbeitet 21.11.2024 04:39:32
An issue was discovered in Mattermost Desktop App before 4.3.0 on macOS. It allows dylib injection.
CVE-2020-14454
- EPSS 0.2%
- Veröffentlicht 19.06.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 05:03:19
An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008.
CVE-2020-14456
- EPSS 0.15%
- Veröffentlicht 19.06.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 05:03:19
An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin Policy is mishandled during access-control decisions for web APIs, aka MMSA-2020-0006.
CVE-2020-14455
- EPSS 0.26%
- Veröffentlicht 19.06.2020 14:15:11
- Zuletzt bearbeitet 21.11.2024 05:03:19
An issue was discovered in Mattermost Desktop App before 4.4.0. Prompting for HTTP Basic Authentication is mishandled, allowing phishing, aka MMSA-2020-0007.