Lucene search
PRIOn knowledge basePRION:CVE-2023-6202HistoryNov 27, 2023 - 10:15 a.m.
Authorization
2023-11-2710:15:00
PRIOn knowledge base
www.prio-n.com
3
authorization
mattermost
vulnerability
focalboard
guest user
information disclosure
Mattermost fails to perform proper authorization in the /plugins/focalboard/api/v2/users endpoint allowing an attacker who is a guest user and knows the ID of another userΒ to get their information (e.g. name, surname, nickname) via Mattermost Boards.
| CPE | Name | Operator | Version |
|---|---|---|---|
| mattermost | le | 7.8.12 | |
| mattermost | ge | 8.0.0 | |
| mattermost | le | 8.1.3 |
References
Related
cnvd
cnvd
Mattermost Information Disclosure Vulnerability
2023-11-30 00:00:00
nvd
nvd
CVE-2023-6202
2023-11-27 10:15:08
github
github
Mattermost Improper Access Control vulnerability
2023-11-27 12:30:55
veracode
veracode
Improper Access Control
2023-11-28 09:53:47
cvelist
cvelist
osv
osv
Mattermost Improper Access Control vulnerability
2023-11-27 12:30:55
CGA-pghq-vx89-mr76
2024-06-24 14:34:07
CVE-2023-6202
2023-11-27 10:15:08
cve
cve
CVE-2023-6202
2023-11-27 10:15:08
nessus
nessus