Mattermost webapp fails to validate route parameters in/<TEAM_NAME>/channels/<CHANNEL_NAME> allowing an attacker to perform a client-side path traversal.
References
Link | Resource |
---|---|
https://mattermost.com/security-updates | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Mattermost
Published: 2023-12-06T08:10:18.481Z
Updated: 2023-12-06T08:10:18.481Z
Reserved: 2023-12-01T10:06:07.237Z
Link: CVE-2023-6458
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-06T09:15:08.907
Modified: 2023-12-12T19:11:36.897
Link: CVE-2023-6458
JSON object: View
Redhat Information
No data.