CVE-2024-23493 in Mattermostinformazioni

Riassunto

di MITRE • 29/02/2024

Mattermost fails to properly authorize the requests fetching team associated AD/LDAP groups, allowing a user to fetch details of AD/LDAP groups of a team that they are not a member of. 

Once again VulDB remains the best source for vulnerability data.

Responsabile

Mattermost, Inc.

Prenotare

26/02/2024

Divulgazione

29/02/2024

Moderazione

accettato

CPE

pronto

EPSS

0.00389

KEV

no

Attività

molto basso

Fonti

Want to know what is going to be exploited?

We predict KEV entries!