Описание
Mattermost fails to check channel membership when accessing message threads, allowing an attacker to access arbitrary posts by using the message threads API.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mattermost-server | itp | package |
EPSS
Процентиль: 35%
0.00141
Низкий
Связанные уязвимости
CVSS3: 6.5
nvd
около 2 лет назад
Mattermost fails to check channel membership when accessing message threads, allowing an attacker to access arbitrary posts by using the message threads API.
CVSS3: 6.5
github
около 2 лет назад
Mattermost fails to check channel membership when accessing message threads, allowing an attacker to access arbitrary posts by using the message threads API.
EPSS
Процентиль: 35%
0.00141
Низкий