Unauthorized Access to Authorization Tokens in Mattermost Mobile Apps

Unauthorized Access to Authorization Tokens in Mattermost Mobile Apps

CVE-2020-13891 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintended third-party servers could sometimes obtain authorization tokens, aka MMSA-2020-0022.

Learn more about our Cis Benchmark Audit For Apple Ios.