4 matches found
CVE-2023-1774
creationtimestamp| type| source ---|---|--- 2023-03-31 16:22:09+00:00| seen| https://t.me/cibsecurity/61240...
CVE-2023-1774 Unauthorized email invite to a private channel
When processing an email invite to a private channel on a team, Mattermost fails to validate the inviter's permission to that channel, allowing an attacker to invite themselves to a private channel...
CVE-2023-1774 Unauthorized email invite to a private channel
When processing an email invite to a private channel on a team, Mattermost fails to validate the inviter's permission to that channel, allowing an attacker to invite themselves to a private channel...
CVE-2023-1774
CVE-2023-1774 concerns Mattermost where processing an email invite to a private channel does not validate the inviter’s permission for that channel. The result is that an attacker can invite themselves to a private channel without proper authorization. The issue centers on the invite handling flo...