PT-2023-25371 · Unknown · Mattermost

Bharat

·

Publicado

2023-07-17

·

Atualizado

2024-03-06

·

CVE-2023-3590

CVSS v3.1

7.5

Alta

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions Mattermost (affected versions not specified)
Description Mattermost fails to delete card attachments in Boards, allowing an attacker to access deleted attachments.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-863

Identificadores relacionados

BIT-MATTERMOST-2023-3590
CVE-2023-3590

Produtos afetados

Mattermost