CVE-2025-20072
published 2025-01-16CVE-2025-20072: Mattermost Mobile versions <= 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Mattermost Mobile versions <= 2.22.0 fail to properly validate the style of proto supplied to an action's style in post.props.attachments, which allows an attacker to crash the mobile via crafted malicious input.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost | <= 2.22.0 | — |
| mattermost | mattermost_mobile | < 2.23.0 | 2.23.0 |