CVE-2023-3581

Published: Jul 17, 2023
Updated: Jul 28, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-3581" target="_blank" rel="noopener"> CVE-2023-3581
Severity: High
Exploit:

Mattermost fails to properly validate the origin of a websocket connection allowing a MITM attacker on Mattermost to access the websocket APIs.

CVSS v3:

CWEs:

Software	From	Fixed in
mattermost / mattermost_server	7.8.0	7.8.7
mattermost / mattermost_server	7.10.0	7.10.3
mattermost / mattermost_server	7.9.0	7.9.5

Vulnerability Database