Security Advisory

CVE-2024-37182

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-14 08:39:19

Last updated 2024-08-02 03:50:55

Assigner Mattermost

State PUBLISHED

Description

Mattermost Desktop App versions <=5.7.0 fail to correctly prompt for permission when opening external URLs which allows a remote attacker to force a victim over the Internet to run arbitrary programs on the victims system via custom URI schemes.

← Browse all CVEs View on cve.org ↗