Описание
Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace and access information from the public teams and channels.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mattermost-server | itp | package |
EPSS
Процентиль: 38%
0.00168
Низкий
Связанные уязвимости
CVSS3: 3.7
nvd
почти 4 года назад
Mattermost 6.4.x and earlier fails to properly invalidate pending email invitations when the action is performed from the system console, which allows accidentally invited users to join the workspace and access information from the public teams and channels.
CVSS3: 4.6
github
почти 4 года назад
Improper Control of a Resource Through its Lifetime in Mattermost
EPSS
Процентиль: 38%
0.00168
Низкий