exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-4195

почти 2 года назад

Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes, which allows an attacker authenticated as a team admin to promote guests to team admins via crafted HTTP requests.

CVSS3: 2.7

EPSS: Низкий

CVE-2024-4195

почти 2 года назад

CVSS3: 2.7

EPSS: Низкий

CVE-2024-4195

почти 2 года назад

Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 ...

CVSS3: 2.7

EPSS: Низкий

GHSA-5fh7-7mw7-mmx5

почти 2 года назад

Mattermost allows team admins to promote guests to team admins

CVSS3: 2.7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-4195 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes, which allows an attacker authenticated as a team admin to promote guests to team admins via crafted HTTP requests.	CVSS3: 2.7	0% Низкий	почти 2 года назад
CVE-2024-4195 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes, which allows an attacker authenticated as a team admin to promote guests to team admins via crafted HTTP requests.	CVSS3: 2.7	0% Низкий	почти 2 года назад
CVE-2024-4195 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 ...	CVSS3: 2.7	0% Низкий	почти 2 года назад
GHSA-5fh7-7mw7-mmx5 Mattermost allows team admins to promote guests to team admins	CVSS3: 2.7	0% Низкий	почти 2 года назад

Уязвимостей на страницу