CVE-2025-20630
published 2025-01-16CVE-2025-20630: Mattermost Mobile versions <=2.22.0 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Mattermost Mobile versions <=2.22.0 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker to cause the mobile to crash via creating and sending such a post to a channel.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost | <= <=2.22.0 | — |
| mattermost | mattermost_mobile | < 2.23.0 | 2.23.0 |