Mattermost Desktop App versions <=5.7.0 fail to correctly prompt for permission when opening external URLs which allows a remote attacker to force a victim over the Internet to run arbitrary programs on the victims system via custom URI schemes.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mattermost_desktop | Mattermost | * | 5.7.0 (including) |