Количество 3
Количество 3
CVE-2025-2475
Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to invalidate the cache when a user account is converted to a bot which allows an attacker to login to the bot exactly one time via normal credentials.
CVE-2025-2475
Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11 ...
GHSA-6rqh-8465-2xcw
Mattermost vulnerable to Incorrect Implementation of Authentication Algorithm
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-2475 Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to invalidate the cache when a user account is converted to a bot which allows an attacker to login to the bot exactly one time via normal credentials. | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
| CVE-2025-2475 Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11 ... | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
| GHSA-6rqh-8465-2xcw Mattermost vulnerable to Incorrect Implementation of Authentication Algorithm | CVSS3: 5.4 | 0% Низкий | 10 месяцев назад |
Уязвимостей на страницу