Описание
Mattermost fails to properly validate the "Show Full Name" option in a few endpoints in Mattermost Boards, allowing a member to get the full name of another user even if the Show Full Name option was disabled.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| mattermost-server | itp | package |
EPSS
Процентиль: 50%
0.00269
Низкий
Связанные уязвимости
CVSS3: 4.3
nvd
больше 1 года назад
Mattermost fails to properly validate the "Show Full Name" option in a few endpoints in Mattermost Boards, allowing a member to get the full name of another user even if the Show Full Name option was disabled.
CVSS3: 4.3
github
больше 1 года назад
Mattermost Exposure of Sensitive Information to an Unauthorized Actor vulnerability
EPSS
Процентиль: 50%
0.00269
Низкий