Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/21 2:16 p.m.8 views

CVE-2025-1472

Mattermost versions 9.11.x = 9.11.8 fail to properly perform authorization of the Viewer role which allows an attacker with the Viewer role configured with No Access to Reporting to still view team and site statistics...

4.3CVSS7AI score0.00233EPSS
Exploits0References1
Circl
Circl
added 2025/03/19 6:43 p.m.7 views

CVE-2025-1472

creationtimestamp| type| source ---|---|--- 2025-03-19 18:43:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkqtnbtwmc2s 2025-03-19 18:49:35+00:00| seen| https://t.me/cvedetector/20656...

4.3CVSS5.2AI score0.00233EPSS
Exploits0References2
NVD
NVD
added 2025/03/19 3:15 p.m.10 views

CVE-2025-1472

Mattermost versions 9.11.x = 9.11.8 fail to properly perform authorization of the Viewer role which allows an attacker with the Viewer role configured with No Access to Reporting to still view team and site statistics...

4.3CVSS0.00233EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/19 2:11 p.m.24 views

CVE-2025-1472 Unauthorized View Access to Site Statistics and Team Statistics

Mattermost versions 9.11.x = 9.11.8 fail to properly perform authorization of the Viewer role which allows an attacker with the Viewer role configured with No Access to Reporting to still view team and site statistics...

4.3CVSS7AI score0.00233EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/19 2:11 p.m.25 views

CVE-2025-1472 Unauthorized View Access to Site Statistics and Team Statistics

Mattermost versions 9.11.x = 9.11.8 fail to properly perform authorization of the Viewer role which allows an attacker with the Viewer role configured with No Access to Reporting to still view team and site statistics...

4.3CVSS0.00233EPSS
Exploits0References1
CVE
CVE
added 2025/03/19 2:11 p.m.96 views

CVE-2025-1472

CVE-2025-1472 corresponds to Mattermost where versions 9.11.x up to 9.11.8 suffer from an authorization flaw in the Viewer role (configured with No Access to Reporting) that allows viewing team/site statistics. The CVE entry indicates a CVSSv3.1 base score of 4.3 (Medium) with Network attack vect...

4.3CVSS4.7AI score0.00233EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder