exploitDog

GHSA-f56r-hfv8-q98c

Опубликовано: 17 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.1

Описание

Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.

Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.

Ссылки

EPSS

Процентиль: 44%

0.00216

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2023-3615

CVSS3: 8.1

nvd

почти 2 года назад

Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.

EPSS

Процентиль: 44%

0.00216

Низкий

8.1 High

CVSS3

CVE ID

Дефекты

CWE-295