Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2026/03/04 12:29 a.m.10 views

SUSE CVE-2026-22892

Mattermost versions 11.1.x = 11.1.2, 10.11.x = 10.11.9, 11.2.x = 11.2.1 fail to validate user permissions when creating Jira issues from Mattermost posts, which allows an authenticated attacker with access to the Jira plugin to read post content and attachments from channels they do not have acce...

4.3CVSS5.8AI score0.00239EPSS
Exploits0References3
OSV
OSV
added 2026/02/13 12:31 p.m.3 views

GHSA-9PJ7-JH2R-87G8 Mattermost doesn't validate user permissions when creating Jira issues from Mattermost posts

Mattermost versions 11.1.x = 11.1.2, 10.11.x = 10.11.9, 11.2.x = 11.2.1 fail to validate user permissions when creating Jira issues from Mattermost posts, which allows an authenticated attacker with access to the Jira plugin to read post content and attachments from channels they do not have acce...

4.3CVSS5.5AI score0.00239EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/02 9:28 a.m.4 views

EUVD-2025-200218

Mattermost versions 10.11.x = 10.11.4, 10.5.x = 10.5.12 fail to validate the user permission when accessing the files and subscribing to the block in Boards, which allows an authenticated user to access other board files and was able to subscribe to the block from other boards that the user does...

3.1CVSS6.2AI score0.00193EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-7064

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00525EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 5:7 a.m.9 views

CVE-2023-5194

Mattermost fails to properly validate permissions when demoting and deactivating a user allowing for a system/user manager to demote / deactivate another manager...

4.3CVSS6.8AI score0.00335EPSS
Exploits0References1
Rows per page
Query Builder