CVE-2024-10214

🗓️ 28 Oct 2024 14:12:37Reported by MattermostType

Mattermost desktop SSO vulnerabilit

Reporter	Title	Published	Views	Family All 78
Chainguard	CVE-2024-10214 vulnerabilities	1 May 202507:14	–	cgr
Circl	CVE-2024-10214	28 Oct 202417:00	–	circl
CNNVD	Mattermost 安全漏洞	28 Oct 202400:00	–	cnnvd
Cvelist	CVE-2024-10214 Incorrect Session Creation with Desktop SSO	28 Oct 202414:12	–	cvelist
EUVD	EUVD-2024-3059	3 Oct 202520:07	–	euvd
Github Security Blog	Mattermost incorrectly issues two sessions when using desktop SSO	28 Oct 202415:31	–	github
Tenable Nessus	Mattermost Desktop 9.5.x < 9.5.9 / 9.11.x < 9.11.1 (MMSA-2024-00363)	31 Oct 202400:00	–	nessus
Tenable Nessus	SUSE SLES15 / openSUSE 15 Security Update : govulncheck-vulndb (SUSE-SU-2024:3911-1)	6 Nov 202400:00	–	nessus
NVD	CVE-2024-10214	28 Oct 202415:15	–	nvd
OPENSUSE Linux	Security update for govulncheck-vulndb (important)	5 Nov 202400:00	–	opensuse

NVD

Node

mattermost mattermostRange9.5.0–9.5.9

mattermost mattermostRange9.11.0–9.11.1

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "9.11.1",
        "status": "affected",
        "version": "9.11.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.5.9",
        "status": "affected",
        "version": "9.5.0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "10.0.0"
      },
      {
        "status": "unaffected",
        "version": "9.11.2"
      },
      {
        "status": "unaffected",
        "version": "9.5.10"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

05 Nov 2024 17:03Current

3.7Low risk

Vulners AI Score3.7

CVSS 3.13.5

EPSS0.00363

SSVC

CWE-303