Mattermost Mobile Apps Session Management Vulnerability Allowing Access to Sensitive Notifications

Vulnerability

A vulnerability exists in Mattermost Mobile Apps in versions through 2.25.0, where the application fails to properly terminate user sessions during the logout process under certain conditions, such as poor connectivity. This flaw can lead to unauthorized users on shared devices accessing sensitive notification content through continued mobile notifications.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive notification content on shared devices.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.7

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Mobile Apps Session Management Vulnerability Allowing Access to Sensitive Notifications

Vulnerability

Impact

Affected Products

Mattermost Mobile Apps

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating