Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mattermost Desktop logs all keystrokes during initial run after fresh installation
Vulnerability Description
Mattermost Desktop fails to set an appropriate log level during initial run after fresh installation resulting in logging all keystrokes including password entry being logged.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Mattermost 日志信息泄露漏洞
Vulnerability Description
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost Desktop 存在安全漏洞,该漏洞源于在初始运行安装期间无法设置适当的日志级别,导致记录所有击键,包括记录密码输入。
CVSS Information
N/A
Vulnerability Type
N/A