Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mattermost Desktop App logging sensitive information and fails to clear data on server deletion
Vulnerability Description
Mattermost Desktop App versions <6.0.0 fail to sanitize sensitive information from Mattermost logs and clear data on server deletion which allows an attacker with access to the users system to gain access to potentially sensitive information via reading the application logs.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
通过日志文件的信息暴露
Vulnerability Title
Mattermost Desktop App 安全漏洞
Vulnerability Description
Mattermost Desktop App是美国Mattermost公司的一款消息传递桌面版应用程序。 Mattermost Desktop App 6.0.0之前版本存在安全漏洞,该漏洞源于未清理Mattermost日志中的敏感信息且服务器删除时未清除数据,可能导致通过读取应用程序日志访问敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A