exploitDog

CVE-2025-30516

Опубликовано: 14 апр. 2025

Источник: nvd

CVSS3: 2

CVSS3: 7.5

EPSS Низкий

Описание

Mattermost Mobile Apps versions <=2.25.0 fail to terminate sessions during logout under certain conditions (e.g. poor connectivity), allowing unauthorized users on shared devices to access sensitive notification content via continued mobile notifications

Ссылки

https://mattermost.com/security-updates
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mattermost:mattermost_mobile:*:*:*:*:*:*:*:*

Версия до 2.26.0 (исключая)

EPSS

Процентиль: 18%

0.00057

Низкий

2 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-613

Связанные уязвимости

GHSA-w8hx-xwgf-2m86

CVSS3: 2

github

10 месяцев назад

Mattermost Mobile Apps versions <=2.25.0 fail to terminate sessions during logout under certain conditions (e.g. poor connectivity), allowing unauthorized users on shared devices to access sensitive notification content via continued mobile notifications

EPSS

Процентиль: 18%

0.00057

Низкий

2 Low

CVSS3

7.5 High

CVSS3

Дефекты

CWE-613