216.73.217.172

CVE-2024-45833

· Published 16/09/2024 07:15 · Modified 23/09/2024 13:43

Labels: CVE-2024-45833 2024-09-16CVE-2024-45833CWE-693NVD-CWE-Other[email protected]

Essential information

Published
16/09/2024 07:15
Modified
23/09/2024 13:43
Author
Creator
CVSS
6.5 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CVSS metrics

Description

Mattermost Mobile Apps versions <=2.18.0 fail to disable autocomplete during login while typing the password and visible password is selected, which allows the password to get saved in the dictionary when the user has Swiftkey as the default keyboard, the masking is off and the password contains a special character..

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
mattermost / mattermost mobile cpe:2.3:a:mattermost:mattermost_mobile:*:*:*:*:*:*:*:*

References