Описание
Mattermost versions 11.3.x <= 11.3.0 fail to preserve the redacted state of burn-on-read posts during deletion which allows channel members to access unrevealed burn-on-read message contents via the WebSocket post deletion event.. Mattermost Advisory ID: MMSA-2026-00579
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 11.3.0 (включая) до 11.3.1 (исключая)
cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.00029
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-201
Связанные уязвимости
CVSS3: 4.3
debian
16 дней назад
Mattermost versions 11.3.x <= 11.3.0 fail to preserve the redacted sta ...
CVSS3: 4.3
github
16 дней назад
Mattermost fails to preserve the redacted state of burn-on-read posts during deletion
EPSS
Процентиль: 8%
0.00029
Низкий
4.3 Medium
CVSS3
Дефекты
CWE-201