Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:8 a.m.6 views

CVE-2023-5195

Mattermost fails to properly validate the permissions when soft deleting a team allowing a team member to soft delete other teams that they are not part of...

6.5CVSS6.7AI score0.00419EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/10/05 12:0 a.m.31 views

Mattermost Server < 7.8.10 / 8.0.x < 8.0.2 / 8.1.0 Multiple Vulnerabilities (MMSA-2023-00222) (MMSA-2023-00224) (MMSA-2023-00230)

The version of Mattermost Server running on the remote host is prior to 7.8.10, 8.0.x prior to 8.0.2, or 8.1.0. It is, therefore, affected by multiple vulnerabilities: - Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage...

6.5CVSS5.7AI score0.00562EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/09/29 9:25 a.m.33 views

CVE-2023-5195 A team member can soft delete other teams that they are not part of

Mattermost fails to properly validate the permissions when soft deleting a team allowing a team member to soft delete other teams that they are not part of...

6.5CVSS6.6AI score0.00419EPSS
Exploits0References1
CVE
CVE
added 2023/09/29 9:25 a.m.71 views

CVE-2023-5195

CVE-2023-5195 affects Mattermost Server. The issue arises from improper permission validation when soft deleting a team, which can allow a team member to soft delete other teams they are not part of. The provided documents identify the vulnerable component (Mattermost server) and the root cause (...

6.5CVSS5.8AI score0.00419EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder