Количество 3
Количество 3
CVE-2025-41443
Mattermost versions 10.5.x <= 10.5.12, 10.11.x <= 10.11.2 fail to properly validate guest user permissions when accessing channel information which allows guest users to discover active public channels and their metadata via the `/api/v4/teams/{team_id}/channels/ids` endpoint
CVE-2025-41443
Mattermost versions 10.5.x <= 10.5.12, 10.11.x <= 10.11.2 fail to prop ...
GHSA-7cr3-38jm-6p45
Mattermost has a Missing Authorization vulnerability
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-41443 Mattermost versions 10.5.x <= 10.5.12, 10.11.x <= 10.11.2 fail to properly validate guest user permissions when accessing channel information which allows guest users to discover active public channels and their metadata via the `/api/v4/teams/{team_id}/channels/ids` endpoint | CVSS3: 4.3 | 0% Низкий | 4 месяца назад |
| CVE-2025-41443 Mattermost versions 10.5.x <= 10.5.12, 10.11.x <= 10.11.2 fail to prop ... | CVSS3: 4.3 | 0% Низкий | 4 месяца назад |
| GHSA-7cr3-38jm-6p45 Mattermost has a Missing Authorization vulnerability | CVSS3: 4.3 | 0% Низкий | 4 месяца назад |
Уязвимостей на страницу