CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Mattermost: >> Mattermost >> 7.4.0 Security Vulnerabilities

CVE-2023-27263

A missing permissions check in the /plugins/playbooks/api/v0/runs API in Mattermost allows an attacker to list and view playbooks belonging to a team they are not a member of.

CVSS Score

4.3

EPSS Score

0.001

Published

2023-02-27

CVE-2023-27264

A missing permissions check in Mattermost Playbooks in Mattermost allows an attacker to modify a playbook via the /plugins/playbooks/api/v0/playbooks/[playbookID] API.

CVSS Score

7.1

EPSS Score

0.0

Published

2023-02-27

Page 3

Vulnerabilities

Vulnerable Software

Mattermost: >> Mattermost >> 7.4.0 Security Vulnerabilities

Products

Pricing

Contact Us