Required CVE Record Information
Description
Mattermost fails to validate the type of the "reminder" body request parameter allowing an attacker to crash the Playbook Plugin when updating the status dialog.
CVSS 1 Total
| Score | Severity | Version | Vector String |
|---|---|---|---|
| 4.3 | MEDIUM | 3.1 | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
Credits
- vultza (vultza) finder
References 1 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 1 Total
- https://mattermost.com/security-updates x_transferred