4 matches found
GO-2025-3694 Mattermost Fails to Check User Access to `ExperimentalSettings` in github.com/mattermost/mattermost-server
Mattermost Fails to Check User Access to ExperimentalSettings in github.com/mattermost/mattermost-server...
GHSA-FPFF-WJ6M-GRVR Mattermost Fails to Check User Access to `ExperimentalSettings`
Mattermost versions 10.5.x = 10.5.2, 9.11.x = 9.11.11 fail to check RestrictSystemAdmin setting if user doesn't have access to ExperimentalSettings which allows a System Manager to access ExperimentSettings when RestrictSystemAdmin is true via System Console...
Mattermost Fails to Check User Access to `ExperimentalSettings`
Mattermost versions 10.5.x = 10.5.2, 9.11.x = 9.11.11 fail to check RestrictSystemAdmin setting if user doesn't have access to ExperimentalSettings which allows a System Manager to access ExperimentSettings when RestrictSystemAdmin is true via System Console...
CVE-2025-2570
Mattermost versions 10.5.x = 10.5.3, 9.11.x = 9.11.11 fail to check RestrictSystemAdmin setting if user doesn't have access to ExperimentalSettings which allows a System Manager to access ExperimentSettings when RestrictSystemAdmin is true via System Console...