Lucene search

MattermostVULNRICHMENT:CVE-2024-8071

HistoryAug 22, 2024 - 6:39 a.m.

CVE-2024-8071 System Role with edit access to permissions can elevate themselves to system admin

2024-08-2206:39:54

CWE-284

Mattermost

github.com

cve-2024-8071

mattermost

role elevation

permission restriction

CVSS3

4.7

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

20.0%

SSVC

Exploitation

none

Automatable

Technical Impact

partial

JSON

Mattermost versions 9.9.x <= 9.9.1, 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 and 9.8.x <= 9.8.2 fail to restrict which roles can promote a user as system admin which allows a System Role with edit access to the permissions section of system console to update their role (e.g. member) to include the manage_system permission, effectively becoming a System Admin.

References

mattermost.com/security-updates