12 matches found
[SECURITY] Fedora 42 Update: libwebsockets-4.3.7-2.fc42
This is the libwebsockets C library for lightweight websocket clients and servers...
EUVD-2023-0949
Malicious code in bioql PyPI...
EUVD-2024-1010
Malicious code in bioql PyPI...
CVE-2023-1775
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients...
Important: tomcat8
Issue Overview: Denial of Service via incomplete cleanup vulnerability in Apache Tomcat. It was possible for WebSocket clients to keep WebSocket connections open leading to increased resource consumption.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M16, from 10.1.0-M1 through...
BIT-MATTERMOST-2023-1775
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients...
Mattermost Server < 7.1.6 / 7.2.x < 7.7.2 Information Disclosure (MMSA-2023-00138)
The version of Mattermost Server running on the remote host is prior to 7.1.6 or 7.2.x prior to 7.7.2. It is, therefore, affected by an information disclosure vulnerability. When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted...
GHSA-8JHH-3JF2-PFWR Mattermost vulnerable to information disclosure
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients. Issue Identifier: MMSA-2023-00138...
Mattermost vulnerable to information disclosure
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients. Issue Identifier: MMSA-2023-00138...
CVE-2023-1775
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients...
Design/Logic Flaw
When running in a High Availability configuration, Mattermost fails to sanitize some of the userupdated and postdeleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients...
PT-2023-17235 · Unknown · Mattermost
Name of the Vulnerable Software and Affected Versions: Mattermost affected versions not specified Description: When running in a High Availability configuration, Mattermost fails to sanitize some of the user updated and post deleted events broadcast to all users, leading to disclosure of sensitiv...