Page 16 of 126 results (0.011 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered in Mattermost Server before 5.8.0. The first user is sometimes inadvertently a system admin. Se detectó un problema en Mattermost Server versiones anteriores a 5.8.0. El primer usuario es a veces inadvertidamente un administrador del sistema • https://mattermost.com/security-updates • CWE-269: Improper Privilege Management •

CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0

An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. An attacker could authenticate to a different user's account via a crafted SAML response. Se detectó un problema en Mattermost Server versiones anteriores a 4.7.0, 4.6.2 y 4.5.2. Un atacante podría autenticarse en una cuenta de usuario diferente por medio de una respuesta SAML diseñada • https://mattermost.com/security-updates • CWE-287: Improper Authentication •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered in Mattermost Server before 5.1. It allows attackers to cause a denial of service via the invite_people slash command. Se detectó un problema en Mattermost Server versiones anteriores a 5.1. Permite a atacantes causar una denegación de servicio por medio del comando de barra diagonal invite_people • https://mattermost.com/security-updates • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

An issue was discovered in Mattermost Server before 5.1, 5.0.2, and 4.10.2. An attacker could use the invite_people slash command to invite a non-permitted user. Se detectó un problema en Mattermost Server versiones anteriores a 5.1, 5.0.2 y 4.10.2. Un atacante podría usar el comando barra diagonal invite_people para invitar a un usuario no permitido • https://mattermost.com/security-updates • CWE-732: Incorrect Permission Assignment for Critical Resource •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

An issue was discovered in Mattermost Server before 5.7. It allows a bypass of e-mail address discovery restrictions. Se detectó un problema en Mattermost Server versiones anteriores a 5.7. Permite omitir unas restricciones de detección de direcciones de correo electrónico • https://mattermost.com/security-updates •