VDB
CVE-2024-47003
CVE-2024-47003
PUBLISHED
Es existieren mehrere Schwachstellen im Mattermost Server, die zum aktuellen Zeitpunkt nicht im Detail beschrieben und veröffentlicht wurden. Ein Angreifer kann diese Schwachstellen ausnutzen, um nicht näher spezifizierte Auswirkungen zu verursachen.
EPSS 0.48% · 65.7th percentile
Risk Scores
EPSS Score
0.48%
65.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mattermost | Mattermost Mattermost <10.0.0 | |
| Mattermost | Mattermost Mattermost <9.11.1 | |
| Mattermost | Mattermost Mattermost <9.10.2 | |
| Mattermost | Mattermost Mattermost <9.5.9 | |
| Mattermost | Mattermost Mattermost <9.9.3 |
Exploit Intelligence
- CIRCL seen: CVE-2024-47003 (circl-sighting)
- https://mattermost.com/security-updates (circl)
- Posts sent via websockets aren't sanitized properly (hackerone)
- Posts sent via websockets aren't sanitized properly (hackerone)
- Posts sent via websockets aren't sanitized properly (hackerone)
Timeline
- CVE Published
- Sep 26, 2024 PoC Published
- Sep 27, 2024 EPSS Score
- Oct 1, 2024 PoC Published
- Oct 5, 2024 Coalition ESS Score
- Oct 16, 2024 EPSS Score
- Nov 5, 2024 EPSS Score
- Nov 24, 2024 EPSS Score
- Jan 2, 2025 EPSS Score
- Jan 22, 2025 EPSS Score
- Feb 10, 2025 EPSS Score
- Mar 1, 2025 EPSS Score