Primary

Context

Mattermost Desktop App Hardened Runtime Vulnerability Allowing TCC Permission Inheritance

Vulnerability

A vulnerability exists in the Mattermost Desktop App for Mac App Store versions prior to 6.0.0. The issue arises because these versions do not activate the Hardened Runtime, which can lead to an attacker inheriting TCC permissions by transferring the application binary to a temporary folder.

Impact

Exploitation of this vulnerability could allow an attacker to inherit TCC permissions, potentially leading to unauthorized access or manipulation of user data or application behavior.

Remediation

Users can upgrade to Mattermost Desktop App version 6.0.0 or later to address this vulnerability.

Added: Dec 17, 2025, 7:28 PM

Updated: Dec 17, 2025, 7:28 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.7

remediation

0.0

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.3

exploitability

4.7

remediation

0.0

relevance

1.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Desktop App Hardened Runtime Vulnerability Allowing TCC Permission Inheritance

Vulnerability

Impact

Remediation

Affected Products

Mattermost Desktop App

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating