Lucene search
K

5 matches found

Circl
Circl
added 2025/05/30 3:35 p.m.22 views

CVE-2025-3230

creationtimestamp| type| source ---|---|--- 2025-05-30 15:35:46+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfkocqt5iv2...

5.4CVSS7.3AI score0.00187EPSS
Exploits0References1
NVD
NVD
added 2025/05/30 3:15 p.m.12 views

CVE-2025-3230

Mattermost versions 10.7.x = 10.7.0, 10.6.x = 10.6.2, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly invalidate personal access tokens upon user deactivation, allowing deactivated users to maintain full system access by exploiting access token validation flaws via continued usage of previous...

5.4CVSS0.00187EPSS
Exploits0References1
CVE
CVE
added 2025/05/30 2:22 p.m.123 views

CVE-2025-3230

CVE-2025-3230 affects Mattermost Server versions 9.11.x (<=9.11.12), 10.5.x (<=10.5.3), 10.6.x (<=10.6.2), and 10.7.x (

5.4CVSS7AI score0.00187EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/30 2:22 p.m.6 views

CVE-2025-3230 Bypass of System Admin User Deactivation Controls for Personal Access Tokens in Mattermost Server

Mattermost versions 10.7.x = 10.7.0, 10.6.x = 10.6.2, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly invalidate personal access tokens upon user deactivation, allowing deactivated users to maintain full system access by exploiting access token validation flaws via continued usage of previous...

5.4CVSS7.1AI score0.00187EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/30 2:22 p.m.18 views

CVE-2025-3230 Bypass of System Admin User Deactivation Controls for Personal Access Tokens in Mattermost Server

Mattermost versions 10.7.x = 10.7.0, 10.6.x = 10.6.2, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly invalidate personal access tokens upon user deactivation, allowing deactivated users to maintain full system access by exploiting access token validation flaws via continued usage of previous...

5.4CVSS0.00187EPSS
Exploits0References1
Rows per page
Query Builder