Security Advisory

CVE-2024-3872

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-16 09:05:04

Last updated 2024-08-01 20:26:57

Assigner Mattermost

State PUBLISHED

Description

Mattermost Mobile app versions 2.13.0 and earlier use a regular expression with polynomial complexity to parse certain deeplinks, which allows an unauthenticated remote attacker to freeze or crash the app via a long maliciously crafted link.

← Browse all CVEs View on cve.org ↗