Описание
Mattermost Desktop App versions <= 5.13.0 fail to validate URLs external to the configured Mattermost servers, allowing an attacker on a server the user has configured to crash the user's application by sending the user a malformed URL.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.13.1.0 (исключая)
cpe:2.3:a:mattermost:mattermost_desktop:*:*:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00097
Низкий
3.5 Low
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-1287
Связанные уязвимости
CVSS3: 3.5
debian
4 месяца назад
Mattermost Desktop App versions <= 5.13.0 fail to validate URLs extern ...
CVSS3: 3.5
github
4 месяца назад
Mattermost Desktop App versions <= 5.13.0 fail to validate URLs external to the configured Mattermost servers, allowing an attacker on a server the user has configured to crash the user's application by sending the user a malformed URL.
EPSS
Процентиль: 27%
0.00097
Низкий
3.5 Low
CVSS3
6.5 Medium
CVSS3
Дефекты
CWE-1287