Mattermost Desktop vulnerabilities
24 known vulnerabilities affecting mattermost/mattermost_desktop.
Total CVEs
24
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH3MEDIUM14LOW5
Vulnerabilities
Page 2 of 2
CVE-2020-14456HIGHCVSS 7.3fixed in 4.4.02020-06-19
CVE-2020-14456 [HIGH] CWE-346 CVE-2020-14456: An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin Policy is mishandled
An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin Policy is mishandled during access-control decisions for web APIs, aka MMSA-2020-0006.
nvd
CVE-2020-14455MEDIUMCVSS 6.5fixed in 4.4.02020-06-19
CVE-2020-14455 [MEDIUM] CWE-287 CVE-2020-14455: An issue was discovered in Mattermost Desktop App before 4.4.0. Prompting for HTTP Basic Authenticat
An issue was discovered in Mattermost Desktop App before 4.4.0. Prompting for HTTP Basic Authentication is mishandled, allowing phishing, aka MMSA-2020-0007.
nvd
CVE-2020-14454MEDIUMCVSS 6.1fixed in 4.4.02020-06-19
CVE-2020-14454 [MEDIUM] CWE-601 CVE-2020-14454: An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the
An issue was discovered in Mattermost Desktop App before 4.4.0. Attackers can open web pages in the desktop application because server redirection is mishandled, aka MMSA-2020-0008.
nvd
CVE-2018-21265MEDIUMCVSS 5.3fixed in 4.0.02020-06-19
CVE-2018-21265 [MEDIUM] CWE-732 CVE-2018-21265: An issue was discovered in Mattermost Desktop App before 4.0.0. It mishandled the Same Origin Policy
An issue was discovered in Mattermost Desktop App before 4.0.0. It mishandled the Same Origin Policy for setPermissionRequestHandler (e.g., video, audio, and notifications).
nvd
← Previous2 / 2