Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:54 a.m.6 views

CVE-2023-2808

Mattermost fails to normalize UTF confusable characters when determining if a preview should be generated for a hyperlink, allowing an attacker to trigger link preview on a disallowed domain using a specially crafted link...

5.3CVSS6.8AI score0.00408EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/03/13 12:0 a.m.30 views

Mattermost Server 5.34.x < 7.1.9 / 7.2.x < 7.8.4 / 7.9.x < 7.9.3 / 7.10.0 (MMSA-2023-00159)

The version of Mattermost Server installed on the remote host is prior to 7.1.9, 7.8.4, or 7.9.3 / 7.10.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2023-00159 advisory. - Mattermost fails to normalize UTF confusable characters when determining if a preview should be...

5.3CVSS5.8AI score0.00408EPSS
Exploits0References2
NVD
NVD
added 2023/05/29 10:15 a.m.14 views

CVE-2023-2808

Mattermost fails to normalize UTF confusable characters when determining if a preview should be generated for a hyperlink, allowing an attacker to trigger link preview on a disallowed domain using a specially crafted link...

5.3CVSS4.8AI score0.00408EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/29 9:7 a.m.12 views

CVE-2023-2808 Lack of URL normalization allows rendering previews for disallowed domains

Mattermost fails to normalize UTF confusable characters when determining if a preview should be generated for a hyperlink, allowing an attacker to trigger link preview on a disallowed domain using a specially crafted link...

4.3CVSS6.8AI score0.00408EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/05/29 9:7 a.m.26 views

CVE-2023-2808 Lack of URL normalization allows rendering previews for disallowed domains

Mattermost fails to normalize UTF confusable characters when determining if a preview should be generated for a hyperlink, allowing an attacker to trigger link preview on a disallowed domain using a specially crafted link...

4.3CVSS5.5AI score0.00408EPSS
Exploits0References1
Rows per page
Query Builder