CVE-2023-3613
LOW3.5EPSS 0.16%發布日:2024/3/6修改日:2025/4/3
描述
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by default.
受影響套件(1)
- Bitnami/mattermostfrom 0, < 7.8.6, >= 7.9.0, < 7.10.3
CVSS 分數
| 來源 | 版本 | 嚴重程度 | 向量 |
|---|---|---|---|
| osv | CVSS 3.1 | LOW3.5 | CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N |