CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-25424

Malicious code in bioql PyPI...

4.3CVSS6.3AI score0.00045EPSS

Exploits0References4

Veracode•added 2025/09/16 12:40 p.m.•3 views

Improper Access Control

github.com/mattermost/mattermost-server is vulnerable to Improper Access Control. The vulnerability is due to failing to validate access controls at the time of access, which allows an attacker to read a thread via AI posts...

4.3CVSS6.6AI score0.00045EPSS

Exploits0References4Affected Software2

Tenable Nessus•added 2025/09/12 12:0 a.m.•1 views

Mattermost Server 10.5.x < 10.5.9 / 10.10.0 Incorrect Authorization (MMSA-2025-00470)

The version of Mattermost Server installed on the remote host is affected by a vulnerability as referenced in the MMSA-2025-00470 advisory. - Mattermost versions 10.5.x = 10.5.8 fail to validate access controls at time of access which allows user to read a thread via AI posts CVE-2025-49810 Note...

4.3CVSS5.5AI score0.00045EPSS

Exploits0References2

RedhatCVE•added 2025/08/23 7:28 a.m.•2 views

CVE-2025-49810

Mattermost versions 10.5.x = 10.5.8 fail to validate access controls at time of access which allows user to read a thread via AI posts...

4.3CVSS7AI score0.00045EPSS

Exploits0References1

OSV•added 2025/08/21 9:30 a.m.•2 views

GHSA-PWVR-GRQG-7VP2 Mattermost Lack of Access Control Validation

Mattermost versions 10.5.x = 10.5.8 fail to validate access controls at time of access which allows user to read a thread via AI posts...

3.5CVSS6.9AI score0.00045EPSS

Exploits0References4

Snyk•added 2025/08/21 9:30 a.m.•1 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to improper validating access controls at time of access. An attacker can gain unauthorized access to thread content by leveraging AI-generated posts. Remediation Upgrade...

5.1CVSS7AI score0.00045EPSS

Exploits0References2