cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2023-5875,https://securityvulnerability.io/vulnerability/CVE-2023-5875,Lack of Hardening against media exploitation from a remote origin,Mattermost Desktop fails to correctly handle permissions or prompt the user for consent on certain sensitive ones allowing media exploitation from a malicious mattermost server,Mattermost,Mattermost Desktop,5.3,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2023-11-02T09:15:00.000Z,0 CVE-2023-5920,https://securityvulnerability.io/vulnerability/CVE-2023-5920,Lack Of Secure Keyboard Entry Protection in MacOS Desktop,"Mattermost Desktop for MacOS fails to utilize the secure keyboard input functionality provided by macOS, allowing for other processes to read the keyboard input. ",Mattermost,Mattermost Desktop,3.3,LOW,0.0004299999854993075,false,,false,false,false,,,false,false,,2023-11-02T09:15:00.000Z,0 CVE-2023-5876,https://securityvulnerability.io/vulnerability/CVE-2023-5876,Regex DoS from a malicious server enrolled in Desktop,"Mattermost fails to properly validate a RegExp built off the server URL path, allowing an attacker in control of an enrolled server to mount a Denial Of Service. ",Mattermost,Mattermost Desktop,5.3,MEDIUM,0.0007300000288523734,false,,false,false,false,,,false,false,,2023-11-02T09:15:00.000Z,0 CVE-2016-11064,https://securityvulnerability.io/vulnerability/CVE-2016-11064,Code Injection Vulnerability in Mattermost Desktop App,"A vulnerability in older versions of the Mattermost Desktop App allows malicious users to execute arbitrary code through injection of specially crafted strings. This issue poses risks to the integrity and confidentiality of sensitive data, as it can lead to unauthorized actions within the application. Users are strongly encouraged to update to version 3.4.0 or later to mitigate this risk. For more details, refer to the official security updates page of Mattermost.",Mattermost,Mattermost Desktop,9.8,CRITICAL,0.0018700000364333391,false,,false,false,false,,,false,false,,2020-06-19T19:22:33.000Z,0 CVE-2018-21265,https://securityvulnerability.io/vulnerability/CVE-2018-21265,Same Origin Policy Vulnerability in Mattermost Desktop App,"The Mattermost Desktop App prior to version 4.0.0 is vulnerable due to improper handling of the Same Origin Policy in its setPermissionRequestHandler feature. This weakness may allow unauthorized access to sensitive resources such as audio and video feeds, as well as notifications. Users should ensure they are using the latest version to mitigate the potential risks associated with this vulnerability.",Mattermost,Mattermost Desktop,5.3,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2020-06-19T16:51:42.000Z,0 CVE-2019-20861,https://securityvulnerability.io/vulnerability/CVE-2019-20861,Arbitrary Code Execution Vulnerability in Mattermost Desktop App,"The Mattermost Desktop App prior to version 4.2.2 contains a vulnerability that could allow an attacker to execute arbitrary code on an affected system. This occurs when a specially crafted link is clicked, potentially leading to a serious compromise of system integrity. Users of the Mattermost Desktop App are advised to update to the latest version to mitigate this risk. For more information and security updates, refer to the official Mattermost security page.",Mattermost,Mattermost Desktop,8.8,HIGH,0.0030799999367445707,false,,false,false,false,,,false,false,,2020-06-19T14:16:54.000Z,0 CVE-2019-20856,https://securityvulnerability.io/vulnerability/CVE-2019-20856,Dylib Injection Vulnerability in Mattermost Desktop App for macOS,"A vulnerability in the Mattermost Desktop App for macOS enables attackers to perform dynamic library injection, potentially compromising application integrity and exposing sensitive data. This issue affects versions prior to 4.3.0, allowing malicious libraries to be loaded into the app's process, and can result in unauthorized code execution. Users are advised to update to the latest version to mitigate risks associated with this vulnerability.",Mattermost,Mattermost Desktop,9.8,CRITICAL,0.0023300000466406345,false,,false,false,false,,,false,false,,2020-06-19T14:07:21.000Z,0 CVE-2020-14456,https://securityvulnerability.io/vulnerability/CVE-2020-14456,Access-Control Vulnerability in Mattermost Desktop Application,"A security issue in the Mattermost Desktop App prior to version 4.4.0 involves improper handling of the Same Origin Policy during web API access-control decisions. This can lead to unauthorized access and manipulation of resources, potentially allowing attackers to exploit this flaw. Users are advised to upgrade to the latest version to mitigate the risks associated with this vulnerability.",Mattermost,Mattermost Desktop,7.3,HIGH,0.0009200000204145908,false,,false,false,false,,,false,false,,2020-06-19T13:12:30.000Z,0 CVE-2020-14455,https://securityvulnerability.io/vulnerability/CVE-2020-14455,Phishing Vulnerability in Mattermost Desktop App from Mattermost,"An issue was identified in the Mattermost Desktop App prior to version 4.4.0, where the system incorrectly handles prompts for HTTP Basic Authentication. This flaw can potentially be exploited to conduct phishing attacks, allowing malicious actors to deceive users into providing sensitive information. Organizations using the affected versions should apply the necessary updates to mitigate these risks.",Mattermost,Mattermost Desktop,6.5,MEDIUM,0.0015399999683722854,false,,false,false,false,,,false,false,,2020-06-19T13:11:32.000Z,0 CVE-2020-14454,https://securityvulnerability.io/vulnerability/CVE-2020-14454,Improper Server Redirection in Mattermost Desktop App,"A security flaw was identified in the Mattermost Desktop App prior to version 4.4.0, where attackers can exploit improper handling of server redirection. This vulnerability allows malicious actors to open untrusted web pages through the desktop application, potentially compromising user security and privacy. Users are advised to update to the latest version to mitigate risks associated with this issue.",Mattermost,Mattermost Desktop,6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2020-06-19T13:10:48.000Z,0