Unrated severityNVD Advisory· Published Jul 15, 2024· Updated Aug 2, 2024
LaTeX post content manipulation via renderer state leak across contexts
CVE-2024-32945
Description
Mattermost Mobile Apps versions <=2.16.0 fail to protect against abuse of a globally shared MathJax state which allows an attacker to change the contents of a LateX post, by creating another post with specific macro definitions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=2.16.0
- Range: 0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.