CVE-2023-4107

Description

Mattermost fails to properly validate the requesting user permissions when updating a system admin, allowing a user manager to update a system admin's details such as email, first name and last name.

Related CPE's

amattermostmattermost********

amattermostmattermost********

amattermostmattermost********

References

https://mattermost.com/security-updates

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io