GHSA-7rgp-4j56-fm79

Опубликовано: 09 янв. 2025

Источник: github

Github: Прошло ревью

CVSS3: 3.5

Описание

Mattermost has Improper Check for Unusual or Exceptional Conditions

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

Ссылки

Пакеты

Наименование

github.com/mattermost/mattermost/server/v8

Затронутые версииВерсия исправления

>= 10.0, < 10.3.0

10.3.0

Наименование

github.com/mattermost/mattermost/server/v8

Затронутые версииВерсия исправления

< 8.0.0-20250102081831-64c566a8280b

8.0.0-20250102081831-64c566a8280b

EPSS

Процентиль: 31%

0.00116

Низкий

3.5 Low

CVSS3

CVE ID

CVE-2025-22445

Дефекты

CWE-754

Связанные уязвимости

CVE-2025-22445

CVSS3: 3.5

redhat

12 месяцев назад

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

CVE-2025-22445

CVSS3: 3.5

nvd

12 месяцев назад

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

CVE-2025-22445

CVSS3: 3.5

debian

12 месяцев назад

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing se ...

SUSE-SU-2025:0297-1

suse-cvrf

11 месяцев назад

Security update for govulncheck-vulndb

EPSS

Процентиль: 31%

0.00116

Низкий

3.5 Low

CVSS3

CVE ID

CVE-2025-22445

Дефекты

CWE-754