Lucene search
K

5 matches found

Chainguard
Chainguard
added 2025/05/01 7:14 a.m.26 views

CVE-2023-6459 vulnerabilities

Vulnerabilities for packages: mattermost-fips...

5.3CVSS7.1AI score0.00534EPSS
Exploits0
NVD
NVD
added 2023/12/06 9:15 a.m.34 views

CVE-2023-6459

Mattermost is grouping calls in the /metrics endpoint by id and reports that id in the response. Since this id is the channelID, the public /metrics endpoint is revealing channelIDs...

5.3CVSS0.00534EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/06 8:11 a.m.27 views

CVE-2023-6459 Public endpoint /metrics of Calls plugin reveals channel IDs

Mattermost is grouping calls in the /metrics endpoint by id and reports that id in the response. Since this id is the channelID, the public /metrics endpoint is revealing channelIDs...

5.3CVSS5.5AI score0.00534EPSS
Exploits0References1
CVE
CVE
added 2023/12/06 8:11 a.m.209 views

CVE-2023-6459

Mattermost CVE-2023-6459 affects the /metrics endpoint. The vulnerability arises because calls are grouped by id and report that id in the response, where id corresponds to channelID, causing the public /metrics endpoint to disclose channelIDs. The available connected records (BIT-MATTERMOST-2023...

5.3CVSS5.1AI score0.00534EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/12/06 8:11 a.m.10 views

CVE-2023-6459 Public endpoint /metrics of Calls plugin reveals channel IDs

Mattermost is grouping calls in the /metrics endpoint by id and reports that id in the response. Since this id is the channelID, the public /metrics endpoint is revealing channelIDs...

5.3CVSS6.7AI score0.00534EPSS
Exploits0References1
Rows per page
Query Builder