Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:58 a.m.9 views

CVE-2023-6202

Mattermost fails to perform proper authorization in the /plugins/focalboard/api/v2/users endpoint allowing an attacker who is a guest user and knows the ID of another user to get their information e.g. name, surname, nickname via Mattermost Boards...

4.3CVSS4.4AI score0.00443EPSS
Exploits0References1
Circl
Circl
added 2023/12/16 8:52 p.m.7 views

CVE-2023-6202

creationtimestamp| type| source ---|---|--- 2023-12-16 20:52:16+00:00| seen| Telegram/RQ71MEKLc-JmLT2Qy6VcUjmZdTKG-ZZX11TMVBJtypYtCGy...

4.3CVSS4.6AI score0.00443EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/11/27 9:12 a.m.13 views

CVE-2023-6202 Insecure Direct Object Reference in /plugins/focalboard/ api/v2/users of Mattermost Boards

Mattermost fails to perform proper authorization in the /plugins/focalboard/api/v2/users endpoint allowing an attacker who is a guest user and knows the ID of another user to get their information e.g. name, surname, nickname via Mattermost Boards...

4.3CVSS6.4AI score0.00443EPSS
Exploits0References1
CVE
CVE
added 2023/11/27 9:12 a.m.205 views

CVE-2023-6202

Mattermost (open source collaboration platform) contains an information disclosure vulnerability in the /plugins/focalboard/api/v2/users endpoint. An attacker who is a guest and knows another user’s ID can access that user’s information (e.g., name, surname, nickname) due to improper authorizatio...

4.3CVSS4.7AI score0.00443EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/11/27 9:12 a.m.24 views

CVE-2023-6202 Insecure Direct Object Reference in /plugins/focalboard/ api/v2/users of Mattermost Boards

Mattermost fails to perform proper authorization in the /plugins/focalboard/api/v2/users endpoint allowing an attacker who is a guest user and knows the ID of another user to get their information e.g. name, surname, nickname via Mattermost Boards...

4.3CVSS5.1AI score0.00443EPSS
Exploits0References1
Rows per page
Query Builder