Security Advisory

CVE-2023-1562

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-22 10:16:19

Last updated 2024-12-06 23:06:03

Assigner Mattermost

State PUBLISHED

Description

Mattermost fails to check the "Show Full Name" setting when rendering the result for the /plugins/focalboard/api/v2/users API call, allowing an attacker to learn the full name of a board owner.

← Browse all CVEs View on cve.org ↗