CVE-2023-5194 - CERT CVE

  1. CVE-2023-5194

ID CVE-2023-5194
Sažetak Mattermost fails to properly validate permissions when demoting and deactivating a user allowing for a system/user manager to demote / deactivate another manager
Reference
CVSS
Base: 4.3
Impact: 1.4
Exploitability:2.8
Pristup
VektorSloženostAutentikacija
NETWORK LOW -
Impact
PovjerljivostCjelovitostDostupnost
NONE LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
Zadnje važnije ažuriranje 03-10-2023 - 17:36
Objavljeno 29-09-2023 - 10:15