Security Advisory

CVE-2024-47145

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-09-26 08:01:48

Last updated 2024-09-26 13:12:52

Assigner Mattermost

State PUBLISHED

Description

Mattermost versions 9.5.x <= 9.5.8 fail to properly authorize access to archived channels when viewing archived channels is disabled, which allows an attacker to view posts and files of archived channels via file links.

← Browse all CVEs View on cve.org ↗