Security Advisory

CVE-2024-39613

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-16 06:40:58

Last updated 2024-09-16 13:05:12

Assigner Mattermost

State PUBLISHED

Description

Mattermost Desktop App versions <=5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of a users machine to cause remote code execution on that machine.

← Browse all CVEs View on cve.org ↗