Lucene search
K

4 matches found

Snyk
Snyk
added 2025/06/03 5:58 p.m.3 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization due to improper enforcement of access controls in the channel members API endpoint. An attacker can gain unauthorised access to metadata about members of public channels as a guest user by exploiting this securit...

5.3CVSS7AI score0.00205EPSS
Exploits0References3
Snyk
Snyk
added 2025/03/21 9:30 a.m.3 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in command.go that allows a user to execute commands on archived channels. Remediation Upgrade github.com/mattermost/mattermost/server/channels/api4 to version 9.11.9-rc1, 10.3.4, 10.4.3 or higher. References -...

8.8CVSS7.3AI score0.00339EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/04/26 4:7 p.m.90 views

Moderate: Red Hat Security Advisory: OpenShift Container Platform 4.7.8 security and bug fix update

Red Hat OpenShift Container Platform release 4.7.8 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.7. Red Hat Product Security has rated this update as having a...

8.6CVSS6.7AI score0.03478EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.39 views

NewStart CGSL MAIN 6.02 : spamassassin Multiple Vulnerabilities (NS-SA-2021-0070)

The remote NewStart CGSL host, running version MAIN 6.02, has spamassassin packages installed that are affected by multiple vulnerabilities: - In Apache SpamAssassin before 3.4.3, a message can be crafted in a way to use excessive resources. Upgrading to SA 3.4.3 as soon as possible is the...

9.3CVSS6.6AI score0.07234EPSS
Exploits0References5
Rows per page
Query Builder