Primary

Context

Mattermost Desktop App External Link Navigation Vulnerability

Vulnerability

A vulnerability exists in the Mattermost Desktop App in versions through 5.13.3, where the application fails to properly restrict navigation to external websites. This oversight allows a malicious server to exploit preload script functionality by having a user open an external link within the Mattermost app, potentially exposing them to untrusted servers.

Impact

Exploitation of this vulnerability could lead to unauthorized access to preload script functionality, allowing for potential manipulation or interaction with untrusted servers.

Remediation

Users are advised to update to the latest version of the Mattermost Desktop App. Details on the security update will be posted on the Mattermost Security Updates page.

Added: Mar 2, 2026, 2:42 PM

Updated: Mar 2, 2026, 10:07 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.8

remediation

0.0

relevance

3.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Desktop App External Link Navigation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Mattermost Desktop App

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating