Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:2 a.m.18 views

CVE-2023-27266

Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the /api/v4/users/me/teams API endpoint, allowing an attacker with team admin privileges to learn the team owner's email address in the response...

2.7CVSS6.7AI score0.00526EPSS
Exploits0References1
Circl
Circl
added 2023/02/27 6:28 p.m.8 views

CVE-2023-27266

creationtimestamp| type| source ---|---|--- 2023-02-27 18:28:14+00:00| seen| https://t.me/cibsecurity/58966...

2.7CVSS4.1AI score0.00526EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/27 2:46 p.m.10 views

CVE-2023-27266 Disclosure of team owner email address when when accessing the teams API

Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the /api/v4/users/me/teams API endpoint, allowing an attacker with team admin privileges to learn the team owner's email address in the response...

2.7CVSS3.7AI score0.00526EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/02/27 2:46 p.m.15 views

CVE-2023-27266 Disclosure of team owner email address when when accessing the teams API

Mattermost fails to honor the ShowEmailAddress setting when constructing a response to the /api/v4/users/me/teams API endpoint, allowing an attacker with team admin privileges to learn the team owner's email address in the response...

2.7CVSS4AI score0.00526EPSS
Exploits0References1
CVE
CVE
added 2023/02/27 2:46 p.m.42 views

CVE-2023-27266

Mattermost vulnerability CVE-2023-27266 arises from the API response construction for /api/v4/users/me/teams not honoring ShowEmailAddress. This allows a user with team admin privileges to learn the team owner's email address from the response. Affected software: Mattermost (web/API level). Root ...

2.7CVSS3.5AI score0.00526EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder