Mattermost — безопасная платформа для совместной работы, позволяющая объединить ваши команды, инструменты и процессы для ускорения критически важной работы.
Релизный цикл, информация об уязвимостях
График релизов
Количество 245
CVE-2023-5193
Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation.
CVE-2023-5193
Mattermost fails to properly check permissions when retrieving a post ...
CVE-2023-5159
Mattermost fails to properly verify the permissions when managing/updating a bot allowing a User Manager role with user edit permissions to manage/update bots.
CVE-2023-5159
Mattermost fails to properly verify the permissions when managing/upda ...
GHSA-6xjj-v76v-fwpj
Mattermost does not validate requesting user permissions before updating admin details
GHSA-9rww-66w7-7vjx
Mattermost fails to sanitize post metadata
GHSA-g3v6-r8p9-wxg9
Mattermost fails to correctly delete attachments
GHSA-p267-jjfq-pphf
Mattermost fails to check if user is a guest before performing actions on public playbooks
CVE-2023-4108
Mattermost fails to sanitize post metadata during audit logging resulting in permalinks contents being logged
CVE-2023-4108
Mattermost fails to sanitize post metadata during audit logging result ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано 1 | |
|---|---|---|---|---|
 | CVE-2023-5193 Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation. | CVSS3: 4.9 | 0% Низкий | около 2 лет назад |
| CVE-2023-5193 Mattermost fails to properly check permissions when retrieving a post ... | CVSS3: 4.9 | 0% Низкий | около 2 лет назад |
| CVE-2023-5159 Mattermost fails to properly verify the permissions when managing/updating a bot allowing a User Manager role with user edit permissions to manage/update bots. | CVSS3: 3.8 | 0% Низкий | около 2 лет назад |
| CVE-2023-5159 Mattermost fails to properly verify the permissions when managing/upda ... | CVSS3: 3.8 | 0% Низкий | около 2 лет назад |
| GHSA-6xjj-v76v-fwpj Mattermost does not validate requesting user permissions before updating admin details | CVSS3: 6.7 | 0% Низкий | около 2 лет назад |
| GHSA-9rww-66w7-7vjx Mattermost fails to sanitize post metadata | CVSS3: 4.5 | 0% Низкий | около 2 лет назад |
| GHSA-g3v6-r8p9-wxg9 Mattermost fails to correctly delete attachments | CVSS3: 3.1 | 0% Низкий | около 2 лет назад |
| GHSA-p267-jjfq-pphf Mattermost fails to check if user is a guest before performing actions on public playbooks | CVSS3: 6.3 | 0% Низкий | около 2 лет назад |
| CVE-2023-4108 Mattermost fails to sanitize post metadata during audit logging resulting in permalinks contents being logged | CVSS3: 4.5 | 0% Низкий | около 2 лет назад |
| CVE-2023-4108 Mattermost fails to sanitize post metadata during audit logging result ... | CVSS3: 4.5 | 0% Низкий | около 2 лет назад |
Уязвимостей на страницу