Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:40 a.m.8 views

CVE-2024-1888

Mattermost fails to check the "inviteguest" permission when inviting guests of other teams to a team, allowing a member with permissions to add other members but not to add guests to add a guest to a team as long as the guest was already a guest in another team of the server...

4.3CVSS4.5AI score0.00331EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/29 8:8 a.m.17 views

CVE-2024-1888 Existing server guests invited to the team by members without "invite_guest" permission

Mattermost fails to check the "inviteguest" permission when inviting guests of other teams to a team, allowing a member with permissions to add other members but not to add guests to add a guest to a team as long as the guest was already a guest in another team of the server...

4.3CVSS6.6AI score0.00331EPSS
Exploits0References1
CVE
CVE
added 2024/02/29 8:8 a.m.246 views

CVE-2024-1888

CVE-2024-1888 relates to Mattermost. Connected OSV advisory GO-2024-2593 confirms a bug where Mattermost fails to check the invite_guest permission in github.com/mattermost/mattermost-server, enabling a user with some permissions to add guests under specific circumstances. Affected module/version...

4.3CVSS4.3AI score0.00331EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/02/29 8:8 a.m.38 views

CVE-2024-1888 Existing server guests invited to the team by members without "invite_guest" permission

Mattermost fails to check the "inviteguest" permission when inviting guests of other teams to a team, allowing a member with permissions to add other members but not to add guests to add a guest to a team as long as the guest was already a guest in another team of the server...

4.3CVSS4.8AI score0.00331EPSS
Exploits0References1
Rows per page
Query Builder