Vulnerability Details CVE-2020-13891
An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintended third-party servers could sometimes obtain authorization tokens, aka MMSA-2020-0022.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
Products affected by CVE-2020-13891
-
cpe:2.3:a:mattermost:mattermost:-
-
cpe:2.3:a:mattermost:mattermost:1.21.0
-
cpe:2.3:a:mattermost:mattermost:1.21.1
-
cpe:2.3:a:mattermost:mattermost:1.21.2
-
cpe:2.3:a:mattermost:mattermost:1.22.0
-
cpe:2.3:a:mattermost:mattermost:1.22.1
-
cpe:2.3:a:mattermost:mattermost:1.23.0
-
cpe:2.3:a:mattermost:mattermost:1.23.1
-
cpe:2.3:a:mattermost:mattermost:1.24.0
-
cpe:2.3:a:mattermost:mattermost:1.25.0
-
cpe:2.3:a:mattermost:mattermost:1.25.1
-
cpe:2.3:a:mattermost:mattermost:1.26.0
-
cpe:2.3:a:mattermost:mattermost:1.26.1
-
cpe:2.3:a:mattermost:mattermost:1.26.2
-
cpe:2.3:a:mattermost:mattermost:1.27.0
-
cpe:2.3:a:mattermost:mattermost:1.27.1
-
cpe:2.3:a:mattermost:mattermost:1.28.0
-
cpe:2.3:a:mattermost:mattermost:1.29.0
-
cpe:2.3:a:mattermost:mattermost:1.30.0
-
cpe:2.3:a:mattermost:mattermost:1.30.1
-
cpe:2.3:a:mattermost:mattermost:1.31.0
-
cpe:2.3:a:mattermost:mattermost:1.31.1