CVE-2024-32945
published 2024-07-15CVE-2024-32945: Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared MathJax state which allows an attacker to change the contents of a…
medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared MathJax state which allows an attacker to change the contents of a LateX post, by creating another post with specific macro definitions.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost | <= 2.16.0 | — |
| mattermost | mattermost_mobile | < 2.17.0 | 2.17.0 |