CVE-2024-4198 | Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0 HTTP Request access control

Inserito da Angelo Barbosa | Apr 26, 2024 | CVE

A vulnerability was found in Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0. It has been classified as problematic. This affects an unknown part of the component HTTP Request Handler. The manipulation leads to improper access controls.

This vulnerability is uniquely identified as CVE-2024-4198. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4198 | Mattermost up to 8.1.11/9.5.2/9.6.0/9.7.0 HTTP Request access control

Post correlati

CVE-2024-41973 | WAGO 8000-0002 File path traversal (VDE-2024-047)

CVE-2024-8431 | Photo Gallery, Images, Slider in Rbs Image Gallery Plugin Private Gallery Title authorization

CVE-2022-48793 | Linux Kernel up to 5.15.24/5.16.10 nSVM nested_svm_load_cr3 initialization (74b426bea4f7/352193edda48/e1779c2714c3)

CVE-2024-8925 | PHP up to 8.1.29/8.2.23/8.3.11 HTTP POST Request (GHSA-9pqp-7h25-4f32)