Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-24776

Disclosure Date: February 09, 2024 (last updated February 16, 2024)
Mattermost fails to check the required permissions in the POST /api/v4/channels/stats/member_count API resulting in channel member counts being leaked to a user without permissions.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0