Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

CVE-2024-41144

๐Ÿ—“๏ธย 01 Aug 2024ย 15:13:15Reported byย MattermostTypeย 
cve
ย cve๐Ÿ”—ย web.nvd.nist.gov๐Ÿ‘ย 35ย Views

Mattermost CVE-2024-41144 sync post validation issu

Related
Detection
Affected
Refs
ReporterTitlePublishedViews
Family
Vulnrichment		CVE-2024-41144 Malicious remote can create/update/delete arbitrary posts in arbitrary channels
1 Aug 202414:05
โ€“vulnrichment
OSV		CVE-2024-41144
1 Aug 202415:15
โ€“osv
OSV		BIT-MATTERMOST-2024-41144
5 Sep 202419:14
โ€“osv
OSV		GO-2024-3023 Mattermost allows remote actor to create/update/delete posts in arbitrary channels in github.com/mattermost/mattermost-server
6 Aug 202422:03
โ€“osv
OSV		GHSA-VG67-CHM7-8M3J Mattermost allows remote actor to create/update/delete posts in arbitrary channels
1 Aug 202415:32
โ€“osv
NVD		CVE-2024-41144
1 Aug 202415:15
โ€“nvd
Cvelist		CVE-2024-41144 Malicious remote can create/update/delete arbitrary posts in arbitrary channels
1 Aug 202414:05
โ€“cvelist
Github Security Blog		Mattermost allows remote actor to create/update/delete posts in arbitrary channels
1 Aug 202415:32
โ€“github
Veracode		Improper Access Control
9 Aug 202406:00
โ€“veracode
Nvd
Node
mattermostmattermost_serverRange9.5.0โ€“9.5.7
OR
mattermostmattermost_serverRange9.7.0โ€“9.7.6
OR
mattermostmattermost_serverRange9.8.0โ€“9.8.2
OR
mattermostmattermost_serverMatch9.9.0
[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "status": "affected",
        "version": "9.9.0"
      },
      {
        "lessThanOrEqual": "9.5.6",
        "status": "affected",
        "version": "9.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.7.5",
        "status": "affected",
        "version": "9.7.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.8.1",
        "status": "affected",
        "version": "9.8.0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "9.10.0"
      },
      {
        "status": "unaffected",
        "version": "9.9.1"
      },
      {
        "status": "unaffected",
        "version": "9.5.7"
      },
      {
        "status": "unaffected",
        "version": "9.7.6"
      },
      {
        "status": "unaffected",
        "version": "9.8.2"
      }
    ]
  }
]

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
01 Aug 2024 15:15Current
7.1High risk
Vulners AI Score7.1
CVSS35.5 - 7.1
EPSS0.00135
SSVC
CWE-284
mattermostcve-2024-41144sync issueremote attackvalidationsync post
35
.json
Report