Vulnerabilities > Mattermost > Mattermost Desktop > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-16 CVE-2024-39613 Uncontrolled Search Path Element vulnerability in Mattermost Desktop
Mattermost Desktop App versions <=5.8.0 fail to specify an absolute path when searching the cmd.exe file, which allows a local attacker who is able to put an cmd.exe file in the Downloads folder of a user's machine to cause remote code execution on that machine.
local
low complexity
mattermost CWE-427
7.8
7.8
2020-06-19 CVE-2019-20861 Unspecified vulnerability in Mattermost Desktop 3.4.0/4.0.0
An issue was discovered in Mattermost Desktop App before 4.2.2.
network
low complexity
mattermost
8.8
8.8
2020-06-19 CVE-2020-14456 Origin Validation Error vulnerability in Mattermost Desktop
An issue was discovered in Mattermost Desktop App before 4.4.0.
network
low complexity
mattermost CWE-346
7.3
7.3