2024-09-16 06:40:58
Mattermost
PUBLISHED
Mattermost Desktop App versions <=5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of a users machine to cause remote code execution on that machine.