Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-19558

Malicious code in bioql PyPI...

5.4CVSS6.3AI score0.00169EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/02 5:24 p.m.13 views

CVE-2025-47871

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly validate channel membership when retrieving playbook run metadata, allowing authenticated users who are playbook members but not channel members to access sensitive informatio...

5.4CVSS6.6AI score0.00169EPSS
Exploits0References1
NVD
NVD
added 2025/06/30 5:15 p.m.8 views

CVE-2025-47871

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly validate channel membership when retrieving playbook run metadata, allowing authenticated users who are playbook members but not channel members to access sensitive informatio...

5.4CVSS0.00169EPSS
Exploits0References1
CVE
CVE
added 2025/06/30 4:51 p.m.29 views

CVE-2025-47871

Mattermost requires update: versions 10.5.x ≤ 10.5.5, 9.11.x ≤ 9.11.15, 10.8.x ≤ 10.8.0, 10.7.x ≤ 10.7.2, 10.6.x ≤ 10.6.5 fail to validate channel membership when retrieving playbook run metadata. This allows authenticated users who are playbook members but not channel members to access sensitive...

5.4CVSS6AI score0.00169EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/06/30 4:51 p.m.5 views

CVE-2025-47871 Mattermost Playbooks exposes private channel metadata to unauthorized users via run metadata API

Mattermost versions 10.5.x = 10.5.5, 9.11.x = 9.11.15, 10.8.x = 10.8.0, 10.7.x = 10.7.2, 10.6.x = 10.6.5 fail to properly validate channel membership when retrieving playbook run metadata, allowing authenticated users who are playbook members but not channel members to access sensitive informatio...

4.3CVSS6AI score0.00169EPSS
Exploits0References3
Rows per page
Query Builder