CVE-2023-5194

Опубликовано: 29 сент. 2023

Источник: debian

Описание

Mattermost fails to properly validate permissions when demoting and deactivating a user allowing for a system/user manager to demote / deactivate another manager

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
mattermost-server	itp			package

Связанные уязвимости

CVE-2023-5194

CVSS3: 2.7

nvd

около 2 лет назад

Mattermost fails to properly validate permissions when demoting and deactivating a user allowing for a system/user manager to demote / deactivate another manager

GHSA-h69v-mvh9-hfrq

CVSS3: 4.3

github

около 2 лет назад

Mattermost Incorrect Authorization vulnerability