CVE-2023-2808

Name of the Vulnerable Software and Affected Versions Mattermost (affected versions not specified)

Description The issue arises from Mattermost's failure to normalize UTF confusable characters when determining whether to generate a preview for a hyperlink. This allows an attacker to trigger a link preview on a disallowed domain by using a specially crafted link.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.