Lucene search

MattermostVULNRICHMENT:CVE-2024-39353

HistoryJul 03, 2024 - 8:37 a.m.

CVE-2024-39353 RemoteClusterFrame payloads are audit logged in full

2024-07-0308:37:16

CWE-200

Mattermost

github.com

cve-2024-39353

mattermost

remoteclusterframe

audit logging

sanitize

high privileged attacker

message contents

CVSS3

2.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Mattermost versions 9.5.x <= 9.5.5 and 9.8.0 fail to sanitize the RemoteClusterFrame payloads before audit logging them which allows a high privileged attacker with access to the audit logs to read message contents.

CNA Affected

[
  {
    "vendor": "Mattermost",
    "product": "Mattermost",
    "versions": [
      {
        "status": "affected",
        "version": "9.8.0"
      },
      {
        "status": "affected",
        "version": "9.5.0",
        "versionType": "semver",
        "lessThanOrEqual": "9.5.5"
      },
      {
        "status": "unaffected",
        "version": "9.9.0"
      },
      {
        "status": "unaffected",
        "version": "9.8.1"
      },
      {
        "status": "unaffected",
        "version": "9.5.6"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

References

mattermost.com/security-updates

CVSS3

2.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

AI Score

6.7

Confidence

Low

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Related for VULNRICHMENT:CVE-2024-39353