Описание
Mattermost fails to properly validate the requesting user permissions when updating a system admin, allowing a user manager to update a system admin's details such as email, first name and last name.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mattermost-server | itp | package |
EPSS
Процентиль: 8%
0.00032
Низкий
Связанные уязвимости
CVSS3: 6.7
nvd
почти 2 года назад
Mattermost fails to properly validate the requesting user permissions when updating a system admin, allowing a user manager to update a system admin's details such as email, first name and last name.
CVSS3: 6.7
github
почти 2 года назад
Mattermost does not validate requesting user permissions before updating admin details
EPSS
Процентиль: 8%
0.00032
Низкий