Security Advisory

CVE-2022-1384

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-19 20:26:28

Last updated 2024-12-06 23:09:22

Assigner Mattermost

State PUBLISHED

Description

Mattermost version 6.4.x and earlier fails to properly check the plugin version when a plugin is installed from the Marketplace, which allows an authenticated and an authorized user to install and exploit an old plugin version from the Marketplace which might have known vulnerabilities.

← Browse all CVEs View on cve.org ↗