Количество 3
Количество 3
CVE-2025-2564
Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to properly enforce the 'Allow users to view/update archived channels' System Console setting, which allows authenticated users to view members and member information of archived channels even when this setting is disabled.
CVE-2025-2564
Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11 ...
GHSA-mj2p-v2c2-vh4v
Mattermost Incorrect Authorization vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-2564 Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to properly enforce the 'Allow users to view/update archived channels' System Console setting, which allows authenticated users to view members and member information of archived channels even when this setting is disabled. | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| CVE-2025-2564 Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11 ... | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
| GHSA-mj2p-v2c2-vh4v Mattermost Incorrect Authorization vulnerability | CVSS3: 4.3 | 0% Низкий | 10 месяцев назад |
Уязвимостей на страницу