BIT-mattermost-2023-2515

Import Source

https://github.com/bitnami/vulndb/tree/main/data/mattermost/BIT-mattermost-2023-2515.json

Aliases

CVE-2023-2515
GHSA-7g2v-2frm-rg94

Published

2024-03-06T11:01:44.573Z

Modified

2024-03-06T11:25:28.861Z

Details

Mattermost fails to restrict a user with permissions to edit other users and to create personal access tokens from elevating their privileges to system admin

References

https://mattermost.com/security-updates

Affected packages

Bitnami / mattermost

Package

Name: mattermost

Affected ranges

Type: SEMVER
Events: Introduced

0The exact introduced commit is unknown

Fixed

7.1.8

Introduced

7.2.0

Fixed

7.7.4

Introduced

7.8.0

Fixed

7.8.3

Introduced

7.9.0

Fixed

7.9.2