Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage channels to read the posts of a DM conversation.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://mattermost.com/security-updates |
History
Fri, 20 Sep 2024 16:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Mattermost
Published: 2023-09-29T09:23:47.082Z
Updated: 2024-09-20T16:01:39.785Z
Reserved: 2023-09-26T08:44:07.420Z
Link: CVE-2023-5193
Vulnrichment
Updated: 2024-08-02T07:52:07.827Z
NVD
Status : Modified
Published: 2023-09-29T10:15:10.687
Modified: 2024-11-21T08:41:16.473
Link: CVE-2023-5193
Redhat
No data.