2 matches found
CVE-2024-3872
Mattermost Mobile app versions 2.13.0 and earlier are affected by a vulnerability in the deep-link parsing logic, where a regular expression with polynomial complexity can be exploited by an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link. The issue ...
CVE-2020-26232 Open redirect in Jupyter Server
Jupyter Server before version 1.0.6 has an Open redirect vulnerability. A maliciously crafted link to a jupyter server could redirect the browser to a different website. All jupyter servers are technically affected, however, these maliciously crafted links can only be reasonably made for known...