GHSA-mj8v-773w-5qhj

Опубликовано: 24 мая 2022

Источник: github

Github: Прошло ревью

CVSS3: 2.7

Описание

Mattermost Server allows System Admin to modify LDAP account names and email addresses

An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account.

Ссылки

Пакеты

Наименование

github.com/mattermost/mattermost-server

Затронутые версииВерсия исправления

< 3.0.0

3.0.0

EPSS

Процентиль: 40%

0.00182

Низкий

2.7 Low

CVSS3

CVE ID

CVE-2016-11077

Дефекты

CWE-732

Связанные уязвимости

CVE-2016-11077

CVSS3: 2.7

nvd

больше 5 лет назад

An issue was discovered in Mattermost Server before 3.0.0. It has a superfluous API in which the System Admin can change the account name and e-mail address of an LDAP account.

CVE-2016-11077

CVSS3: 2.7

debian

больше 5 лет назад

An issue was discovered in Mattermost Server before 3.0.0. It has a su ...

EPSS

Процентиль: 40%

0.00182

Низкий

2.7 Low

CVSS3

CVE ID

CVE-2016-11077

Дефекты

CWE-732