Lucene search
K

105 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:27 p.m.11 views

CVE-2026-22880

Mattermost Mobile Apps versions =2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Mattermost server to steal user credentials for a legitimate Mattermost server via relaying the SSO...

6.1CVSS5.5AI score0.00117EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/21 8:22 a.m.8 views

CVE-2026-22880 Mobile SSO authentication flow allows credential theft via malicious server

Mattermost Mobile Apps versions =2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Mattermost server to steal user credentials for a legitimate Mattermost server via relaying the SSO...

6.1CVSS5.9AI score0.00117EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/21 8:22 a.m.11 views

EUVD-2026-31250

Mattermost Mobile Apps versions =2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Mattermost server to steal user credentials for a legitimate Mattermost server via relaying the SSO...

6.1CVSS5.9AI score0.00117EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/21 8:22 a.m.9 views

CVE-2026-22880

Mattermost Mobile Apps versions =2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Mattermost server to steal user credentials for a legitimate Mattermost server via relaying the SSO...

6.1CVSS5.9AI score0.00117EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/21 12:0 a.m.12 views

PT-2026-42432

Mattermost Mobile Apps versions =2.37 11.4 2.0.37 11.0.4 11.1.3 11.3.2 10.11.11.0 fail to properly validate the SSO authentication callback origin which allows an attacker controlling a malicious Mattermost server to steal user credentials for a legitimate Mattermost server via relaying the SSO...

6.1CVSS5.9AI score0.00117EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.13 views

CVE-2019-20849

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Cookie data can persist on a device after a logout...

5.3CVSS6.9AI score0.00901EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:8 a.m.18 views

CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information e.g., server addresses or message content...

7.5CVSS6.6AI score0.0112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:6 a.m.8 views

CVE-2019-20848

An issue was discovered in Mattermost Mobile Apps before 1.26.0. The Quick Reply feature mishandles crafted replies...

7.5CVSS6.9AI score0.00921EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:5 a.m.8 views

CVE-2019-20851

An issue was discovered in Mattermost Mobile Apps before 1.26.0. An attacker can use directory traversal with the Video Preview feature to overwrite arbitrary files on a device...

9.1CVSS7AI score0.01385EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:16 a.m.9 views

CVE-2025-1558

Mattermost Mobile Apps versions =2.25.0 fail to properly validate GIF images prior to rendering which allows a malicious user to cause the Android application to crash via message containing a maliciously crafted GIF...

6.5CVSS7AI score0.00346EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/13 12:0 a.m.5 views

Mattermost Mobile Apps 安全漏洞

Mattermost Mobile Apps is a messaging mobile application from Mattermost USA. A security vulnerability exists in Mattermost Mobile Apps version 2.32.0 and prior versions, which stems from an unverified SSO redirect token source that could lead to obtaining user session credentials...

6.5CVSS6.6AI score0.00125EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6587

Malware in sbrugna...

7.5CVSS7.5AI score0.01111EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-6099

Malware in sbrugna...

7.5CVSS7.5AI score0.01071EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-6589

Malware in sbrugna...

7.5CVSS7.5AI score0.0112EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11388

Malware in sbrugna...

9.1CVSS9AI score0.01385EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11387

Malware in sbrugna...

5.3CVSS5.6AI score0.00901EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11385

Malware in sbrugna...

7.5CVSS7.5AI score0.00921EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-11389

Malware in sbrugna...

7.5CVSS7.5AI score0.0112EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-11386

Malware in sbrugna...

5.3CVSS5.6AI score0.00901EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7906

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00346EPSS
Exploits0References2
Rows per page
Query Builder