Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:54 a.m.8 views

CVE-2023-2783

Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...

4.3CVSS6.6AI score0.00437EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/08/10 12:0 a.m.22 views

Mattermost Server < 7.8.5 / 7.9.x < 7.9.4 / 7.10.x < 7.10.1 Missing Authorization (MMSA-2023-00151)

The version of Mattermost Server running on the remote host is prior to 7.8.5, 7.9.x prior to 7.9.4 or 7.10.x prior to 7.10.1. It is, therefore, affected by a missing authorization vulnerability. Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request...

4.3CVSS5.2AI score0.00437EPSS
Exploits0References2
NVD
NVD
added 2023/06/16 9:15 a.m.22 views

CVE-2023-2783

Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...

4.3CVSS4.4AI score0.00437EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/16 8:39 a.m.9 views

CVE-2023-2783 App Framework does not checks for the secret provided in the incoming webhook request

Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps...

4.3CVSS6.6AI score0.00437EPSS
Exploits0References1
CVE
CVE
added 2023/06/16 8:39 a.m.55 views

CVE-2023-2783

The CVE-2023-2783 issue affects Mattermost Apps Framework and involves failure to verify a secret in the incoming webhook request, allowing an attacker to modify the content of posts produced by Apps. It is a network-vector vulnerability with low privileges required and no user interaction, impac...

4.3CVSS4.3AI score0.00437EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder