CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-52032 – Private channel names leaking when Elasticsearch is enabled
https://notcve.org/view.php?id=CVE-2024-52032
Mattermost versions 10.0.x <= 10.0.0 and 9.11.x <= 9.11.2 fail to properly query ElasticSearch when searching for the channel name in channel switcher which allows an attacker to get private channels names of channels that they are not a member of, when Elasticsearch v8 was enabled. • https://mattermost.com/security-updates • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 2.7EPSS: 0%CPEs: 4EXPL: 0CVE-2024-42000 – Unauthorized Access to view channels' details
https://notcve.org/view.php?id=CVE-2024-42000
Mattermost versions 9.10.x <= 9.10.2, 9.11.x <= 9.11.1, 9.5.x <= 9.5.9 and 10.0.x <= 10.0.0 fail to properly authorize the requests to /api/v4/channels which allows a User or System Manager, with "Read Groups" permission but with no access for channels to retrieve details about private channels that they were not a member of by sending a request to /api/v4/channels. • https://mattermost.com/security-updates • CWE-863: Incorrect Authorization •