Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mattermost Desktop App fails to enable Hardened Runtime when packaged for Mac App Store
Vulnerability Description
Mattermost Desktop App versions <6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
保护机制失效
Vulnerability Title
Mattermost Desktop App 安全漏洞
Vulnerability Description
Mattermost Desktop App是美国Mattermost公司的一款消息传递桌面版应用程序。 Mattermost Desktop App 6.0.0之前版本存在安全漏洞,该漏洞源于为Mac App Store打包时未启用强化运行时,可能导致通过将二进制文件复制到tmp文件夹来继承TCC权限。
CVSS Information
N/A
Vulnerability Type
N/A