CVE-2023-4105
CVSS 3.1 Score 9.1 of 10 (high)
Details
Published Aug 11, 2023
Updated: Aug 15, 2023
CWE ID 918
Summary
CVE-2023-4105 is a vulnerability affecting Mattermost, an open-source team collaboration platform. This issue arises from a failure in the system to delete attachments when removing a message in a thread. Consequently, a user can still access and download the attachment of a deleted message, posing a potential security risk. This vulnerability may allow unauthorized individuals to gain access to sensitive information. Users are advised to update their Mattermost installations to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- AHwx