Tobias Weisshaar

**Name of the Vulnerable Software and Affected Versions** Samsung Internet versions prior to 28.0.0.59 **Description** The issue arises from improper handling of insufficient permission in SyncClientProvider, allowing local attackers to access and modify arbitrary files. This affects Samsung Internet installed on non-Samsung devices. **Recommendations** For versions prior to 28.0.0.59, update to version 28.0.0.59 or later to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Mattermost versions 9.11.x through 9.11.10 Mattermost versions 10.4.x through 10.4.2 Mattermost versions 10.5.x through 10.5.0 **Description** The issue concerns the improper validation of permissions for the API endpoint "/plugins/playbooks/api/v0/signal/keywords/ignore-thread". This allows any user or attacker to delete posts containing actions created by the Playbooks bot, even without channel access or appropriate permissions. **Recommendations** For versions 9.11.x through 9.11.10, update to a version that properly validates permissions for the API endpoint. For versions 10.4.x through 10.4.2, update to a version that properly validates permissions for the API endpoint. For versions 10.5.x through 10.5.0, update to a version that properly validates permissions for the API endpoint. As a temporary workaround, consider restricting access to the "/plugins/playbooks/api/v0/signal/keywords/ignore-thread" API endpoint until a patch is available.