CGA-95mx-x9w8-wghf

Published

Last updated

https://images.chainguard.dev/security/CGA-95mx-x9w8-wghf

Package

mattermost-9

RepositoryWolfi

Latest Update

Under investigation

Aliases

CVE-2024-10214
GHSA-hm57-h27x-599c

Severity

Unknown

Summary

Mattermost incorrectly issues two sessions when using desktop SSO

Description

Mattermost versions 9.11.X <= 9.11.1, 9.5.x <= 9.5.9 incorrectly issues two sessions when using desktop SSO - one in the browser and one in desktop with incorrect settings.

References

https://nvd.nist.gov/vuln/detail/CVE-2024-10214
https://github.com/advisories/GHSA-hm57-h27x-599c
https://github.com/mattermost/mattermost/commit/0d6b1070a26f0b9fc13f7e7fbbe18b6a31570c5a
https://github.com/mattermost/mattermost
https://mattermost.com/security-updates

Updates

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CGA-95mx-x9w8-wghf

Severity

Summary

Description

References

Updates

Products

Why Chainguard

Customers

Company

Resources