Mattermost Server till 5.7.x Town Square privilegier eskalering

inträdeeditHistoryDiffjsonxmlCTI

En kritiskt svag punkt identifierades i Mattermost Server till 5.7.x. Som påverkar en okänd funktion av komponenten Town Square. En uppgradering till den version 5.8.0 att åtgärda problemet.

Tidslinje

Användare

Fält

Commit Conf

Approve Conf

IDEngageradAnvändareFältFörändraAnmärkningarModereradAnledningC
1056118225/10/2020VulD...confirm_urlhttps://mattermost.com/security-updates/cve.mitre.org25/10/2020accepterad70
1018733220/06/2020VulD...cve_nvd_summaryAn issue was discovered in Mattermost Server before 5.8.0, when Town Square is set to Read-Only. Users can pin or unpin a post.mitre.org20/06/2020accepterad100
1018733120/06/2020VulD...cve_assigned1592524800mitre.org20/06/2020accepterad100
1018732420/06/2020VulD...cvss3_nvd_aNnist.gov20/06/2020accepterad100
1018732320/06/2020VulD...cvss3_nvd_iLnist.gov20/06/2020accepterad100
1018732220/06/2020VulD...cvss3_nvd_cNnist.gov20/06/2020accepterad100
1018732120/06/2020VulD...cvss3_nvd_sUnist.gov20/06/2020accepterad100
1018732020/06/2020VulD...cvss3_nvd_uiNnist.gov20/06/2020accepterad100
1018731920/06/2020VulD...cvss3_nvd_prLnist.gov20/06/2020accepterad100
1018731820/06/2020VulD...cvss3_nvd_acLnist.gov20/06/2020accepterad100
1018731720/06/2020VulD...cvss3_nvd_avNnist.gov20/06/2020accepterad100
1018730420/06/2020VulD...cvss2_nvd_aiNnist.gov20/06/2020accepterad100
1018730320/06/2020VulD...cvss2_nvd_iiPnist.gov20/06/2020accepterad100
1018730220/06/2020VulD...cvss2_nvd_ciNnist.gov20/06/2020accepterad100
1018730120/06/2020VulD...cvss2_nvd_auSnist.gov20/06/2020accepterad100
1018730020/06/2020VulD...cvss2_nvd_acMnist.gov20/06/2020accepterad100
1018729920/06/2020VulD...cvss2_nvd_avNnist.gov20/06/2020accepterad100
1018728920/06/2020VulD...cwe732 (privilegier eskalering)20/06/2020accepterad100
1018734120/06/2020VulD...cvss3_nvd_basescore4.3nist.gov20/06/2020accepterad90
1018734020/06/2020VulD...cvss3_vuldb_rcX20/06/2020accepterad90

Do you know our Splunk app?

Download it now for free!