CVE-2023-2515

Published: May 12, 2023
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-2515" target="_blank" rel="noopener"> CVE-2023-2515
GHSA: <a href="https://github.com/advisories/GHSA-7g2v-2frm-rg94" target="_blank" rel="noopener"> GHSA-7g2v-2frm-rg94
Severity: High
Exploit:

Mattermost fails to restrict a user with permissions to edit other users and to create personal access tokens from elevating their privileges to system admin

CVSS v3:

CWEs: