7 High
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
15.9%
Mattermost fails to properly check a redirect URL parameter allowing for anΒ open redirect was possible when the user clicked βBack to Mattermostβ after providing a invalid custom url scheme in /oauth/{service}/mobile_login?redirect_to=
github.com/advisories/GHSA-4ghx-8jw8-p76q
mattermost.com/security-updates
nvd.nist.gov/vuln/detail/CVE-2023-47168