4 matches found
CVE-2024-24776 vulnerabilities
Vulnerabilities for packages: mattermost-fips...
CVE-2024-24776 Incorrect Authorization leads to Channel Member Count Leak
Mattermost fails to check the required permissions in the POST /api/v4/channels/stats/membercount API resulting in channel member counts being leaked to a user without permissions...
CVE-2024-24776
Mattermost vulnerability CVE-2024-24776: The API POST /api/v4/channels/stats/member_count fails to enforce required permissions, leaking channel member counts to users without permissions. Documents confirm affected product (Mattermost) and the underlying issue is a permissions check gap in the c...
CVE-2024-24776 Incorrect Authorization leads to Channel Member Count Leak
Mattermost fails to check the required permissions in the POST /api/v4/channels/stats/membercount API resulting in channel member counts being leaked to a user without permissions...