Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Mobile crash via object that can't be cast to String in Attachment Field
Vulnerability Description
Mattermost Mobile versions <=2.22.0 fail to properly handle posts with attachments containing fields that cannot be cast to a String, which allows an attacker to cause the mobile to crash via creating and sending such a post to a channel.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
CWE-1287
Vulnerability Title
Mattermost Mobile Apps 安全漏洞
Vulnerability Description
Mattermost Mobile Apps是美国Mattermost公司的一款消息传递移动应用程序。 Mattermost Mobile Apps 2.22.0版本存在安全漏洞,该漏洞源于无法正确处理带有附件的帖子,允许攻击者通过创建此类帖子并将其发送到频道来导致移动设备崩溃。
CVSS Information
N/A
Vulnerability Type
N/A