CVE-2024-21848

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-21848

Severity

3.1

Low

CVSS V3

Description

Improper Access Control in Mattermost Server versions 8.1.x before 8.1.11 allows an attacker that is in a channel with an active call to keep participating in the call even if they are removed from the channel

References

https://images.chainguard.dev/security/CGA-64jc-pf3r-8hwj
https://github.com/advisories/GHSA-xp9j-8p68-9q93
https://images.chainguard.dev/security/CGA-q6g4-2gvj-3jr8
https://images.chainguard.dev/security/CGA-hxh6-329f-wm9m
https://images.chainguard.dev/security/CGA-fxm5-rfvw-pchf
https://images.chainguard.dev/security/CGA-mc62-pf66-53xq
https://images.chainguard.dev/security/CGA-5h25-479c-8566
https://images.chainguard.dev/security/CGA-xp9r-x8q4-5w2c
https://images.chainguard.dev/security/CGA-637v-p689-m69r
https://images.chainguard.dev/security/CGA-w9qj-3hr3-rgmv
https://images.chainguard.dev/security/CGA-6j9x-7f89-rmmw
https://images.chainguard.dev/security/CGA-49vw-wq3c-j2cg
https://images.chainguard.dev/security/CGA-6xcm-f942-4j99
https://mattermost.com/security-updates

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

Product

Chainguard Containers Chainguard Libraries Chainguard VMs Integrations Pricing

Solutions

FedRAMP PCI DSS Golden Images CVE Remediation Public Sector

Customers

Customer Stories Chainguard Reviews

Resources

Events & Webinars Chainguard Courses Documentation Trust Center

Company

About Us Blog Partners Newsroom Careers Legal