Описание
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing the password and visible password is selected, which allows the password to get saved in the dictionary when the user has Swiftkey as the default keyboard, the masking is off and the password contains a special character..
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.19.0 (исключая)
cpe:2.3:a:mattermost:mattermost_mobile:*:*:*:*:*:*:*:*
EPSS
Процентиль: 45%
0.00226
Низкий
4.5 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-693
NVD-CWE-Other
Связанные уязвимости
CVSS3: 4.5
github
больше 1 года назад
Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing the password and visible password is selected, which allows the password to get saved in the dictionary when the user has Swiftkey as the default keyboard, the masking is off and the password contains a special character..
EPSS
Процентиль: 45%
0.00226
Низкий
4.5 Medium
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-693
NVD-CWE-Other