CVE-2024-3872
published 2024-04-16CVE-2024-3872: Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial complexity to parse certain deeplinks, which allows an…
medium6.5CVSS 3.1
AVNACLPRNUIRSUCNINAH
Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial complexity to parse certain deeplinks, which allows an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost | <= 2.13.0 | — |
| mattermost | mattermost_mobile | <= 2.13.0 | — |