CVE-2023-49607 Playbook plugin crash via missing interface type assertion

🗓️ 12 Dec 2023 08:21:36Reported by MattermostType

CVE-2023-49607 Playbook plugin crash due to missing interface type validatio

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-49607	2 Jan 202410:36	–	circl
CNNVD	Mattermost Code Issues Vulnerabilities	12 Dec 202300:00	–	cnnvd
CVE	CVE-2023-49607	12 Dec 202308:21	–	cve
EUVD	EUVD-2023-53555	3 Oct 202520:07	–	euvd
NVD	CVE-2023-49607	12 Dec 202309:15	–	nvd
OSV	BIT-MATTERMOST-2023-49607	6 Mar 202410:58	–	osv
Prion	Design/Logic Flaw	12 Dec 202309:15	–	prion
RedhatCVE	CVE-2023-49607	9 Jan 202609:28	–	redhatcve
Veracode	Improper Check For Unusual Or Exceptional Conditions	18 Mar 202418:27	–	veracode

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "8.1.5",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.0.3",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.1.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.2.1",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "9.2.2"
      },
      {
        "status": "unaffected",
        "version": "8.1.6"
      },
      {
        "status": "unaffected",
        "version": "9.0.4"
      },
      {
        "status": "unaffected",
        "version": "9.1.3"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

12 Dec 2023 08:21Current

7.7High risk

Vulners AI Score7.7

CVSS 3.14.3

EPSS0.00649

CWE-754