Количество 3
Количество 3
CVE-2026-24692
Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to properly enforce read permissions in search API endpoints which allows guest users without read permissions to access posts and files in channels via search API requests. Mattermost Advisory ID: MMSA-2025-00554
CVE-2026-24692
Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10. ...
GHSA-cwfj-642j-gfh4
Mattermost fails to properly enforce read permissions in search API endpoints
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-24692 Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to properly enforce read permissions in search API endpoints which allows guest users without read permissions to access posts and files in channels via search API requests. Mattermost Advisory ID: MMSA-2025-00554 | CVSS3: 4.3 | 0% Низкий | 17 дней назад |
| CVE-2026-24692 Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10. ... | CVSS3: 4.3 | 0% Низкий | 17 дней назад |
| GHSA-cwfj-642j-gfh4 Mattermost fails to properly enforce read permissions in search API endpoints | CVSS3: 4.3 | 0% Низкий | 17 дней назад |
Уязвимостей на страницу