CVE-2023-6458 | Mattermost up to 7.8.13/8.1.4/9.0.2/9.1.1 Route in//channels/ allowing injection

Posted by Angelo Barbosa | Dec 6, 2023 | CVE

A vulnerability was found in Mattermost up to 7.8.13/8.1.4/9.0.2/9.1.1. It has been classified as problematic. Affected is an unknown function of the file in//channels/ allowing of the component Route Handler. The manipulation leads to injection.

This vulnerability is traded as CVE-2023-6458. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-6458 | Mattermost up to 7.8.13/8.1.4/9.0.2/9.1.1 Route in//channels/ allowing injection

Related Posts

CVE-2024-38175 | Microsoft Azure Managed Instance for Apache Cassandra access control

CVE-2024-33574 | appsbd Vitepos Plugin up to 3.0.1 on WordPress authorization

CVE-2024-43211 | PluginOps MailChimp Subscribe Forms Plugin up to 4.0.9.8 on WordPress cross site scripting

VDB-254692 | Microsoft Windows Defender access control