Описание
Mattermost Desktop App versions <6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.0.0 (исключая)
cpe:2.3:a:mattermost:mattermost_desktop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 2%
0.00013
Низкий
3.9 Low
CVSS3
Дефекты
CWE-693
Связанные уязвимости
CVSS3: 3.9
github
около 2 месяцев назад
Mattermost Desktop App versions <6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder.
EPSS
Процентиль: 2%
0.00013
Низкий
3.9 Low
CVSS3
Дефекты
CWE-693