CVE-2023-3581
6.2MEDIUMMattermost fails to properly validate the origin of a websocket connection allowing a MITM attacker on Mattermost to access the websocket APIs.
Published: 7/17/2023Updated: 11/21/2024
Description
Mattermost fails to properly validate the origin of a websocket connection allowing a MITM attacker on Mattermost to access the websocket APIs.
AI AnalysisPowered by AI
Affected Products
mattermostmattermost_server
mattermostmattermost_server
mattermostmattermost_server
References
- https://mattermost.com/security-updatesVendor Advisory
- https://mattermost.com/security-updatesVendor Advisory