Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 10:8 a.m.8 views

CVE-2024-21848

Improper Access Control in Mattermost Server versions 8.1.x before 8.1.11 allows an attacker that is in a channel with an active call to keep participating in the call even if they are removed from the channel...

3.1CVSS3.8AI score0.00311EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/05 8:13 a.m.33 views

CVE-2024-21848 Users maintain access to active call after being removed from a channel

Improper Access Control in Mattermost Server versions 8.1.x before 8.1.11 allows an attacker that is in a channel with an active call to keep participating in the call even if they are removed from the channel...

3.1CVSS4.1AI score0.00311EPSS
Exploits0References1
CVE
CVE
added 2024/04/05 8:13 a.m.231 views

CVE-2024-21848

Mattermost Server 8.1.x is affected by CVE-2024-21848 due to an improper access control flaw. If an attacker is in a channel with an active call, they can continue participating in the call even after being removed from the channel, up to versions before 8.1.11. Remediation is to upgrade to 8.1.1...

3.1CVSS3.9AI score0.00311EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/04/05 8:13 a.m.7 views

CVE-2024-21848 Users maintain access to active call after being removed from a channel

Improper Access Control in Mattermost Server versions 8.1.x before 8.1.11 allows an attacker that is in a channel with an active call to keep participating in the call even if they are removed from the channel...

3.1CVSS6AI score0.00311EPSS
Exploits0References3
Rows per page
Query Builder