Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-40463

Malicious code in bioql PyPI...

4.3CVSS4.9AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2025/05/30 3:30 p.m.2 views

GHSA-HC6V-386M-93PQ Mattermost fails to properly enforce access controls for guest users

Mattermost versions 10.7.x = 10.7.0, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fail to properly enforce access controls for guest users accessing channel member information, allowing authenticated guest users to view metadata about members of public channels via the channel members API endpoint...

3.1CVSS6.8AI score0.00205EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/05/30 3:30 p.m.14 views

Mattermost fails to properly enforce access controls for guest users

Mattermost versions 10.7.x = 10.7.0, 10.5.x = 10.5.3, 9.11.x = 9.11.12 fail to properly enforce access controls for guest users accessing channel member information, allowing authenticated guest users to view metadata about members of public channels via the channel members API endpoint...

3.1CVSS6.8AI score0.00205EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/04/22 4:56 p.m.9 views

GO-2025-3604 Mattermost Fails to Enforce Proper Access Controls on `/api/v4/audits` Endpoint in github.com/mattermost/mattermost-server

Mattermost Fails to Enforce Proper Access Controls on /api/v4/audits Endpoint in github.com/mattermost/mattermost-server...

2.7CVSS6.7AI score0.00259EPSS
Exploits0References3
NVD
NVD
added 2025/04/10 4:15 p.m.35 views

CVE-2025-24866

Mattermost versions 9.11.x = 9.11.8 fail to enforce proper access controls on the /api/v4/audits endpoint, allowing users with delegated granular administration roles who lack access to Compliance Monitoring to retrieve User Activity Logs...

2.7CVSS0.00259EPSS
Exploits0References1
Rows per page
Query Builder