Vulnerability Details CVE-2023-2783
Mattermost Apps Framework fails to verify that a secret provided in the incoming webhook request allowing an attacker to modify the contents of the post sent by the Apps.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.6%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2023-2783
-
cpe:2.3:a:mattermost:mattermost:7.10.0
-
cpe:2.3:a:mattermost:mattermost:7.8.0
-
cpe:2.3:a:mattermost:mattermost:7.8.1
-
cpe:2.3:a:mattermost:mattermost:7.8.2
-
cpe:2.3:a:mattermost:mattermost:7.8.3
-
cpe:2.3:a:mattermost:mattermost:7.8.4
-
cpe:2.3:a:mattermost:mattermost:7.9.0
-
cpe:2.3:a:mattermost:mattermost:7.9.1
-
cpe:2.3:a:mattermost:mattermost:7.9.2
-
cpe:2.3:a:mattermost:mattermost:7.9.3