CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2023-3582 – Lack of channel membership check when linking a board to a channel
https://notcve.org/view.php?id=CVE-2023-3582
17 Jul 2023 — Mattermost fails to verify channel membership when linking a board to a channel allowing a low-privileged authenticated user to link a Board to a private channel they don't have access to, • https://mattermost.com/security-updates • CWE-863: Incorrect Authorization •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2023-3581 – WebSockets accept connections from HTTPS origin
https://notcve.org/view.php?id=CVE-2023-3581
17 Jul 2023 — Mattermost fails to properly validate the origin of a websocket connection allowing a MITM attacker on Mattermost to access the websocket APIs. • https://mattermost.com/security-updates • CWE-346: Origin Validation Error •
CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-3577 – Limited blind SSRF to localhost/intranet in interactive dialog implementation
https://notcve.org/view.php?id=CVE-2023-3577
17 Jul 2023 — Mattermost fails to properly restrict requests to localhost/intranet during the interactive dialog, which could allow an attacker to perform a limited blind SSRF. Mattermost fails to properly restrict requests to localhost/intranet during the interactive dialog, which could allow an attacker to perform a limited blind SSRF. • https://mattermost.com/security-updates • CWE-918: Server-Side Request Forgery (SSRF) •
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2023-2515 – Privilege escalation to system admin via personal access tokens
https://notcve.org/view.php?id=CVE-2023-2515
12 May 2023 — Mattermost fails to restrict a user with permissions to edit other users and to create personal access tokens from elevating their privileges to system admin • https://mattermost.com/security-updates • CWE-863: Incorrect Authorization •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-2281 – Archiving a team broadcasts unsanitized data over WebSockets
https://notcve.org/view.php?id=CVE-2023-2281
25 Apr 2023 — When archiving a team, Mattermost fails to sanitize the related Websocket event sent to currently connected clients. This allows the clients to see the name, display name, description, and other data about the archived team. • https://mattermost.com/security-updates • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-1831 – User password logged in audit logs
https://notcve.org/view.php?id=CVE-2023-1831
17 Apr 2023 — Mattermost fails to redact from audit logs the user password during user creation and the user password hash in other operations if the experimental audit logging configuration was enabled (ExperimentalAuditSettings section in config). Mattermost fails to redact from audit logs the user password during user creation and the user password hash in other operations if the experimental audit logging configuration was enabled (ExperimentalAuditSettings section in config). • https://mattermost.com/security-updates • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-1777 – Information disclosure in linked message previews
https://notcve.org/view.php?id=CVE-2023-1777
31 Mar 2023 — Mattermost allows an attacker to request a preview of an existing message when creating a new message via the createPost API call, disclosing the contents of the linked message. • https://mattermost.com/security-updates • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2023-1776 – Stored XSS via SVG attachment on Boards
https://notcve.org/view.php?id=CVE-2023-1776
31 Mar 2023 — Boards in Mattermost allows an attacker to upload a malicious SVG image file as an attachment to a card and share it using a direct link to the file. • https://mattermost.com/security-updates • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2023-1775 – Unsanitized events sent over Websocket to regular users in a High Availability environment
https://notcve.org/view.php?id=CVE-2023-1775
31 Mar 2023 — When running in a High Availability configuration, Mattermost fails to sanitize some of the user_updated and post_deleted events broadcast to all users, leading to disclosure of sensitive information to some of the users with currently connected Websocket clients. • https://mattermost.com/security-updates • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2023-1774 – Unauthorized email invite to a private channel
https://notcve.org/view.php?id=CVE-2023-1774
31 Mar 2023 — When processing an email invite to a private channel on a team, Mattermost fails to validate the inviter's permission to that channel, allowing an attacker to invite themselves to a private channel. • https://mattermost.com/security-updates • CWE-862: Missing Authorization •