CVE-2023-5920

CWE-200Information Exposure3 documents3 sources
Severity
3.3LOW
EPSS
0.1%
top 76.69%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Mattermost Mattermost Desktop
Timeline
PublishedNov 2

Description

Mattermost Desktop for MacOS fails to utilize the secure keyboard input functionality provided by macOS, allowing for other processes to read the keyboard input.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 1.4 | Impact: 1.4

Affected Packages2 packages

🔴Vulnerability Details

2
CVEList
Lack Of Secure Keyboard Entry Protection in MacOS Desktop2023-11-02
GHSA
GHSA-wrhx-9jgw-g8cj: Mattermost Desktop for MacOS fails to utilize the secure keyboard input functionality provided by macOS, allowing for other processes to read the keyb2023-11-02
CVE-2023-5920 (LOW CVSS 3.3) | Mattermost Desktop for MacOS fails | cvebase.io