Vulnerabilities

CVE-2024-10214

by Fred · 28/10/2024

Mattermost versions 9.11.X <= 9.11.1, 9.5.x <= 9.5.9 icorrectly issues two sessions when using desktop SSO - one in the browser and one in desktop with incorrect settings. More information : https://mattermost.com/security-updates

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : LOW
User interaction : REQUIRED
Confidentiality impact : LOW
Integrity impact : NONE
Base score : 3.5
Base severity : LOW
Exploitability score : 2.1
Impact score : 1.4

Similar

Tags: Cybersecurity Alert