Lucene search

Mattermost Mobile Security Vulnerabilities

cve

CVE-2019-20848

An issue was discovered in Mattermost Mobile Apps before 1.26.0. The Quick Reply feature mishandles crafted replies.

7.5CVSS

7.5AI Score

0.001EPSS

2020-06-19 02:15 PM

cve

CVE-2019-20849

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Cookie data can persist on a device after a logout.

5.3CVSS

5.2AI Score

0.001EPSS

2020-06-19 02:15 PM

cve

CVE-2019-20850

An issue was discovered in Mattermost Mobile Apps before 1.26.0. A view cache can persist on a device after a logout.

5.3CVSS

5.2AI Score

0.001EPSS

2020-06-19 02:15 PM

cve

CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information (e.g., server addresses or message content).

7.5CVSS

7.4AI Score

0.002EPSS

2020-06-19 03:15 PM

cve

CVE-2020-14449

An issue was discovered in Mattermost Mobile Apps before 1.30.0. Authorization tokens can sometimes be disclosed to third-party servers, aka MMSA-2020-0018.

7.5CVSS

7.4AI Score

0.002EPSS

2020-06-19 02:15 PM

cve

CVE-2020-14451

An issue was discovered in Mattermost Mobile Apps before 1.29.0. The iOS app allowed Single Sign-On cookies and Local Storage to remain after a logout, aka MMSA-2020-0013.

7.5CVSS

7.1AI Score

0.002EPSS

2020-06-19 02:15 PM