Lucene search
+L

4 matches found

Tenable Nessus
Tenable Nessus
added 2024/08/09 12:0 a.m.20 views

Mattermost Server 9.0.x < 9.9.1 / 9.10.0 / 9.5.x < 9.5.7 (MMSA-2024-00356)

The version of Mattermost Server installed on the remote host is prior to 9.5.7 or 9.9.1 / 9.10.0. It is, therefore, affected by a vulnerability as referenced in the MMSA-2024-00356 advisory. - Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6 fail to properly validate synced reactions, when share...

4.3CVSS5.8AI score0.00276EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/01 2:5 p.m.38 views

CVE-2024-29977 Malicious remote can create arbitrary reactions on arbitrary posts

Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6 fail to properly validate synced reactions, when shared channels are enabled, which allows a malicious remote to create arbitrary reactions on arbitrary posts...

2.7CVSS0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/01 2:5 p.m.13 views

CVE-2024-29977 Malicious remote can create arbitrary reactions on arbitrary posts

Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6 fail to properly validate synced reactions, when shared channels are enabled, which allows a malicious remote to create arbitrary reactions on arbitrary posts...

2.7CVSS7.1AI score0.00276EPSS
Exploits0References1
OSV
OSV
added 2024/08/01 2:5 p.m.13 views

CVE-2024-29977 Malicious remote can create arbitrary reactions on arbitrary posts

Mattermost versions 9.9.x = 9.9.0, 9.5.x = 9.5.6 fail to properly validate synced reactions, when shared channels are enabled, which allows a malicious remote to create arbitrary reactions on arbitrary posts...

2.7CVSS6.1AI score0.00276EPSS
Exploits0References3
Rows per page
Query Builder