A missing permissions check in Mattermost Playbooks in Mattermost allows an attacker to modify a playbook via the /plugins/playbooks/api/v0/playbooks/[playbookID] API.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://mattermost.com/security-updates/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Mattermost
Published: 2023-02-27T14:46:16.310Z
Updated: 2024-08-02T12:09:41.845Z
Reserved: 2023-02-27T14:31:01.786Z
Link: CVE-2023-27264
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-27T15:15:11.927
Modified: 2023-11-07T04:09:53.240
Link: CVE-2023-27264
Redhat
No data.