Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/30 6:31 p.m.4 views

EUVD-2025-37028

Kanova Android App version 1.0.27 package name com.karelane, developed by Karely L.L.C., contains improper access control vulnerabilities. Attackers may gain unauthorized access to user details and obtain group information, including entry codes, by manipulating API request parameters. Successful...

7.5CVSS6.5AI score0.0027EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/15 3:27 p.m.11 views

CVE-2025-2527 Improper access control to group information

Mattermost versions 10.5.x = 10.5.2, 9.11.x = 9.11.11 failed to properly verify a user's permissions when accessing groups, which allows an attacker to view group information via an API request...

4.3CVSS4.5AI score0.00257EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/15 12:0 a.m.6 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from a privilege issue vulnerability that stems from insufficient privilege validation, which can be exploited by an attacker to view group information via an API request...

4.3CVSS6.2AI score0.00257EPSS
Exploits0References2
OSV
OSV
added 2019/08/23 1:15 p.m.4 views

CVE-2019-15514

The Privacy Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these numbers via the Group Info feature, e.g., by adding a significant fraction of a region's assigned phone numbers...

5.3CVSS6.1AI score0.02256EPSS
Exploits1References1
Rows per page
Query Builder