Mattermost Server@9.10.0 Security Vulnerabilities and Issues — Mattermost Server@9.10.0 CVE List

Lucene search

MattermostMattermost Server9.10.0

3 matches found

CVE•added 2024/08/22 4:15 p.m.•40 views

CVE-2024-42497

Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0, 9.8.x <= 9.8.2 fail to properly enforce permissions which allows a user with systems manager role with read-only access to teams to perform write operations on teams.

6CVSS6AI score0.00137EPSS

CVE•added 2024/08/22 4:15 p.m.•37 views

CVE-2024-43780

Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.0, 9.8.x <= 9.8.2 fail to enforce permissions which allows a guest user with read access to upload files to a channel.

4.3CVSS6.8AI score0.00133EPSS

CVE•added 2024/08/22 4:15 p.m.•28 views

CVE-2024-40884

Mattermost versions 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 fail to properly enforce permissions which allows a team admin user without "Add Team Members" permission to disable the invite URL.

2.7CVSS6.8AI score0.00171EPSS