Lucene search

K
cvelistMitreCVELIST:CVE-2018-21254
HistoryJun 19, 2020 - 4:49 p.m.

CVE-2018-21254

2020-06-1916:49:54
mitre
www.cve.org
1
mattermost server
access control
bypass
message slash command

AI Score

4.7

Confidence

High

EPSS

0.001

Percentile

22.7%

An issue was discovered in Mattermost Server before 5.1. An attacker can bypass intended access control (for direct-message channel creation) via the Message slash command.

AI Score

4.7

Confidence

High

EPSS

0.001

Percentile

22.7%

Related for CVELIST:CVE-2018-21254