CVE-2023-6459 in Mattermostinformação

Sumário

de MITRE • 06/12/2023

Mattermost is grouping calls in the /metrics endpoint by id and reports that id in the response. Since this id is the channelID, the public /metrics endpoint is revealing channelIDs.

Be aware that VulDB is the high quality source for vulnerability data.

Responsável

Mattermost, Inc.

Reservar

01/12/2023

Divulgação

06/12/2023

Moderação

aceite

Entrada

VDB-247055

CPE

pronto

EPSS

0.00534

KEV

não

Atividades

muito baixo

Fontes

Do you need the next level of professionalism?

Upgrade your account now!