Unrestricted information disclosure of all users in Mattermost version 6.7.0 and earlier allows team members to access some sensitive information by directly accessing the APIs.
References
History

Fri, 06 Dec 2024 23:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Mattermost

Published: 2022-07-14T17:20:49

Updated: 2024-12-06T23:08:34.889Z

Reserved: 2022-07-14T00:00:00

Link: CVE-2022-2401

cve-icon Vulnrichment

Updated: 2024-08-03T00:39:07.272Z

cve-icon NVD

Status : Modified

Published: 2022-07-14T18:15:08.313

Modified: 2024-11-21T07:00:55.007

Link: CVE-2022-2401

cve-icon Redhat

No data.