Launch Week Day 1: Announcing Security Design Review
Start for Free
MEDIUM 5.3 Go

Mattermost Server Sensitive Data Exposure

GHSA-j2h2-cvwh-cr64 · BIT-mattermost-2020-14457 · CVE-2020-14457 · GO-2023-1939

Published · Modified

Description

An issue was discovered in Mattermost Server before 5.20.0. Non-members can receive broadcasted team details via the update_team WebSocket event, aka MMSA-2020-0012.

References

Ready to move

Start Securing

Start for Free Get Demo

Free, no credit card | First findings in minutes