CVE-2025-0476

Medium CVSS: 4.3

Mattermost Mobile Apps versions <=2.22.0 fail to properly handle specially crafted attachment names, which allows an attacker to crash the mobile app for any user who opened a channel containing the specially crafted attachment

Vendor

Mattermost

Product

Mattermost Mobile

CWE

CWE-1287

Yayın Tarihi

2025-01-16 00:15:25

Güncelleme

2025-09-24 16:47:36

Source Identifier

responsibledisclosure@mattermost.com

KEV Date Added

Kategoriler

CWE-1287 Mattermost Mobile MEDIUM Mattermost 2025

Referanslar

https://mattermost.com/security-updates

Benzer Kayıtlar

Medium

CVE-2026-3112

Mattermost versions 11.4.x

Medium

CVE-2026-3113

Mattermost versions 11.4.x

Medium

CVE-2026-3114

Mattermost versions 11.4.x

Medium

CVE-2026-3115

Mattermost versions 11.2.x

High

CVE-2026-3108

Mattermost versions 11.2.x

Medium

CVE-2026-4274

Mattermost versions 11.2.x