Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:11 a.m.9 views

CVE-2022-1003

One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two distinct privileges/capabilities in a way that allows them to override certain restricted configurations like EnableUploads...

4.9CVSS6.7AI score0.00482EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/03/18 6:0 p.m.17 views

CVE-2022-1003 Sysadmin can override existing configs & bypass restrictions like EnableUploads

One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two distinct privileges/capabilities in a way that allows them to override certain restricted configurations like EnableUploads...

3.3CVSS5.4AI score0.00482EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/03/18 6:0 p.m.7 views

CVE-2022-1003 Sysadmin can override existing configs & bypass restrictions like EnableUploads

One of the API in Mattermost version 6.3.0 and earlier fails to properly protect the permissions, which allows the system administrators to combine the two distinct privileges/capabilities in a way that allows them to override certain restricted configurations like EnableUploads...

3.3CVSS6.8AI score0.00482EPSS
Exploits0References1
CVE
CVE
added 2022/03/18 6:0 p.m.89 views

CVE-2022-1003

CVE-2022-1003 concerns Mattermost 6.3.0 and earlier, where one API fails to properly protect permissions. This allows system administrators to combine two distinct privileges/capabilities to override restricted configurations like EnableUploads. The connected documents provide the affected produc...

4.9CVSS4.5AI score0.00482EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder