Security Advisory

CVE-2023-48732

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-02 09:52:01

Last updated 2025-06-03 14:45:52

Assigner Mattermost

State PUBLISHED

Description

Mattermost fails to scope the WebSocket response around notified users to a each user separately resulting in the WebSocket broadcasting the information about who was notified about a post to everyone else in the channel.

← Browse all CVEs View on cve.org ↗