Lucene search
GoogleOSV:GO-2024-3025HistoryAug 06, 2024 - 10:40 p.m.
Mattermost failed to disallow the modification of local users when syncing users in shared channels in github.com/mattermost/mattermost-server
2024-08-0622:40:50
Google
osv.dev
7
mattermost
user synchronization
shared channels
local users
modification
software
github.com/mattermost/mattermost-server
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
14.1%
Mattermost failed to disallow the modification of local users when syncing users in shared channels in github.com/mattermost/mattermost-server
Related
github
github
osv
osv
Mattermost failed to disallow the modification of local users when syncing users in shared channels
2024-08-01 15:32:21
CVE-2024-36492
2024-08-01 15:15:11
vulnrichment
vulnrichment
CVE-2024-36492 Existing local user overwritten by malicious remote
2024-08-01 14:05:01
cve
cve
CVE-2024-36492
2024-08-01 15:15:11
nvd
nvd
CVE-2024-36492
2024-08-01 15:15:11
cvelist
cvelist
CVE-2024-36492 Existing local user overwritten by malicious remote
2024-08-01 14:05:01
veracode
veracode
Improper Access Control
2024-08-09 06:24:05
CVSS3
7.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
14.1%
Related for OSV:GO-2024-3025