Mattermost fails to check if compliance export is enabled when fetching posts of public channels allowing a user that is not a member of the public channel to fetch the posts, which will not be audited in the compliance export.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://mattermost.com/security-updates |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Mattermost
Published: 2024-02-29T08:05:29.776Z
Updated: 2024-08-07T17:38:09.687Z
Reserved: 2024-02-26T09:14:30.337Z
Link: CVE-2024-1887
Vulnrichment
Updated: 2024-08-01T18:56:22.552Z
NVD
Status : Awaiting Analysis
Published: 2024-02-29T08:15:46.437
Modified: 2024-02-29T13:49:29.390
Link: CVE-2024-1887
Redhat
No data.