Lucene search
CVE-2024-36257 Lack of permission check when updating the profile picture of a remote user (shared channels enabled)
ποΈΒ 03 Jul 2024Β 08:10:29Reported byΒ MattermostTypeΒ 
Β cvelistπΒ www.cve.orgπΒ 19Β Views
CVE-2024-36257 Lack of permission check when updating profile picture of remote use
Show more
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-2024-36257 | 3 Jul 202409:15 | β | cve |
 | CVE-2024-36257 Lack of permission check when updating the profile picture of a remote user (shared channels enabled) | 3 Jul 202408:29 | β | vulnrichment |
 | Improper Access Control | 4 Jul 202408:00 | β | veracode |
 | Mattermost Improper Access Control Vulnerability | 4 Jul 202400:00 | β | cnvd |
 | CVE-2024-36257 | 3 Jul 202409:15 | β | nvd |
 | CVE-2024-36257 | 3 Jul 202409:15 | β | osv |
[
{
"defaultStatus": "unaffected",
"product": "Mattermost",
"vendor": "Mattermost",
"versions": [
{
"status": "affected",
"version": "9.8.0"
},
{
"lessThanOrEqual": "9.5.5",
"status": "affected",
"version": "9.5.0",
"versionType": "semver"
},
{
"status": "unaffected",
"version": "9.9.0"
},
{
"status": "unaffected",
"version": "9.8.1"
},
{
"status": "unaffected",
"version": "9.5.6"
}
]
}
]| Source | Link |
|---|---|
| mattermost | www.mattermost.com/security-updates |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo03 Jul 2024 08:29Current
CVSS32.7
EPSS0.00113