Security Advisory

CVE-2024-1949

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-29 10:41:54

Last updated 2024-08-01 18:56:22

Assigner Mattermost

State PUBLISHED

Description

A race condition in Mattermost versions 8.1.x before 8.1.9, and 9.4.x before 9.4.2 allows an authenticated attacker to gain unauthorized access to individual posts contents via carefully timed post creation while another user deletes posts.

← Browse all CVEs View on cve.org ↗