RSS   Vulnerabilities for 'Mattermost desktop'   RSS

2020-06-19
 
CVE-2016-11064

CWE-94
 

 
An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be executed as code via injection.

 
 
CVE-2020-14456

CWE-346
 

 
An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin Policy is mishandled during access-control decisions for web APIs, aka MMSA-2020-0006.

 
 
CVE-2020-14455

CWE-287
 

 
An issue was discovered in Mattermost Desktop App before 4.4.0. Prompting for HTTP Basic Authentication is mishandled, allowing phishing, aka MMSA-2020-0007.

 
 
CVE-2020-14454

CWE-601
 

 
An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008.

 
 
CVE-2019-20861

NVD-CWE-noinfo
 

 
An issue was discovered in Mattermost Desktop App before 4.2.2. It allows attackers to execute arbitrary code via a crafted link.

 

 >>> Vendor: Mattermost 6 Products
Server
Mattermost
Mattermost server
Mattermost desktop
Mattermost boards
Playbooks


Copyright 2024, cxsecurity.com

 

Back to Top