CVE-2020-14451

HIGH

Mattermost Mobile Apps <1.29.0 - Info Disclosure

Title source: llm

Description

An issue was discovered in Mattermost Mobile Apps before 1.29.0. The iOS app allowed Single Sign-On cookies and Local Storage to remain after a logout, aka MMSA-2020-0013.

References (1)

[Vendor Advisory] https://mattermost.com/security-updates/

Scores

CVSS v3 7.5

EPSS 0.0032

EPSS Percentile 55.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

CWE

CWE-459

Status published

Products (1)

mattermost/mattermost_mobile < 1.29.0

Published Jun 19, 2020

Tracked Since Feb 18, 2026