4 matches found
CVE-2025-3611
creationtimestamp| type| source ---|---|--- 2025-05-30 15:35:45+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfkobhb5wc2...
CVE-2025-3611 Improper Access Control in Mattermost allows System Managers to view team details despite role restrictions
Mattermost versions 10.7.x = 10.7.0, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly enforce access control restrictions for System Manager roles, allowing authenticated users with System Manager privileges to view team details they should not have access to via direct API requests to team...
CVE-2025-3611 Improper Access Control in Mattermost allows System Managers to view team details despite role restrictions
Mattermost versions 10.7.x = 10.7.0, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fails to properly enforce access control restrictions for System Manager roles, allowing authenticated users with System Manager privileges to view team details they should not have access to via direct API requests to team...
CVE-2025-3611
Mattermost Server: CVE-2025-3611 affects versions 10.7.x <=10.7.0, 10.5.x <=10.5.3, and 9.11.x