CVE-2024-37182

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jun 14, 2024

Updated: Aug 7, 2024

CWE ID 693

Summary

CVE-2024-37182 is a vulnerability affecting Mattermost Desktop App versions prior to 5.7.1. The issue allows remote attackers to trick users into opening malicious URLs, which can lead to the execution of arbitrary programs on the victim's system. The app fails to prompt users adequately before opening these URLs, making it easier for attackers to exploit the situation over the internet. This weakness can pose a significant security risk for users, emphasizing the importance of keeping software up-to-date.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mattermost, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/wd1sQ3
https://www.cve.org/CVERecord?id=CVE-2024-37182
https://nvd.nist.gov/vuln/detail/CVE-2024-37182

Back to Vulnerability Database

CVE-2024-37182

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations