Lucene search
+L

5 matches found

Chainguard
Chainguard
added 2025/04/28 7:14 p.m.37 views

CVE-2025-24866 vulnerabilities

Vulnerabilities for packages: mattermost-fips...

2.7CVSS4AI score0.00278EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/04/12 4:2 p.m.33 views

CVE-2025-24866

Mattermost versions 9.11.x = 9.11.8 fail to enforce proper access controls on the /api/v4/audits endpoint, allowing users with delegated granular administration roles who lack access to Compliance Monitoring to retrieve User Activity Logs...

2.7CVSS6.8AI score0.00278EPSS
Exploits0References1
NVD
NVD
added 2025/04/10 4:15 p.m.35 views

CVE-2025-24866

Mattermost versions 9.11.x = 9.11.8 fail to enforce proper access controls on the /api/v4/audits endpoint, allowing users with delegated granular administration roles who lack access to Compliance Monitoring to retrieve User Activity Logs...

2.7CVSS0.00278EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/10 3:33 p.m.9 views

CVE-2025-24866 Unauthorized Access to User Activity Logs API by delegated granular administration roles

Mattermost versions 9.11.x = 9.11.8 fail to enforce proper access controls on the /api/v4/audits endpoint, allowing users with delegated granular administration roles who lack access to Compliance Monitoring to retrieve User Activity Logs...

2.7CVSS3.9AI score0.00278EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/10 3:33 p.m.20 views

CVE-2025-24866 Unauthorized Access to User Activity Logs API by delegated granular administration roles

Mattermost versions 9.11.x = 9.11.8 fail to enforce proper access controls on the /api/v4/audits endpoint, allowing users with delegated granular administration roles who lack access to Compliance Monitoring to retrieve User Activity Logs...

2.7CVSS0.00278EPSS
Exploits0References1
Rows per page
Query Builder