Lucene search
K

4 matches found

Circl
Circl
added 2024/01/02 10:6 a.m.6 views

CVE-2023-6547

creationtimestamp| type| source ---|---|--- 2024-01-02 10:06:57+00:00| seen| https://t.me/ctinow/161636 2025-05-12 20:29:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16049...

5.4CVSS5.5AI score0.00317EPSS
Exploits0References2
NVD
NVD
added 2023/12/12 9:15 a.m.23 views

CVE-2023-6547

Mattermost fails to validate team membership when a user attempts to access a playbook, allowing a user with permissions to a playbook but no permissions to the team the playbook is on to access and modify the playbook. This can happen if the user was once a member of the team, got permissions to...

5.4CVSS0.00317EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/12 8:22 a.m.6 views

CVE-2023-6547 Playbooks access/modification by removed team member

Mattermost fails to validate team membership when a user attempts to access a playbook, allowing a user with permissions to a playbook but no permissions to the team the playbook is on to access and modify the playbook. This can happen if the user was once a member of the team, got permissions to...

3.7CVSS5.5AI score0.00317EPSS
Exploits0References1
CVE
CVE
added 2023/12/12 8:22 a.m.37 views

CVE-2023-6547

Mattermost is affected by CVE-2023-6547, where a flaw in access control allows a user who has permissions to a specific playbook but not to its hosting team to view/modify the playbook. The root cause is the system failing to validate team membership when accessing a playbook, which can occur if ...

5.4CVSS4.7AI score0.00317EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder