exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2024-4198

почти 2 года назад

Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes which allows an attacker authenticated as team admin to demote users to guest via crafted HTTP requests.

CVSS3: 2.7

EPSS: Низкий

CVE-2024-4198

почти 2 года назад

CVSS3: 2.7

EPSS: Низкий

CVE-2024-4198

почти 2 года назад

Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 ...

CVSS3: 2.7

EPSS: Низкий

GHSA-5qx9-9ffj-5r8f

почти 2 года назад

Mattermost fails to fully validate role changes

CVSS3: 2.7

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2024-4198 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes which allows an attacker authenticated as team admin to demote users to guest via crafted HTTP requests.	CVSS3: 2.7	0% Низкий	почти 2 года назад
CVE-2024-4198 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully validate role changes which allows an attacker authenticated as team admin to demote users to guest via crafted HTTP requests.	CVSS3: 2.7	0% Низкий	почти 2 года назад
CVE-2024-4198 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 ...	CVSS3: 2.7	0% Низкий	почти 2 года назад
GHSA-5qx9-9ffj-5r8f Mattermost fails to fully validate role changes	CVSS3: 2.7	0% Низкий	почти 2 года назад

Уязвимостей на страницу