CVE-2023-3613
published 2023-07-17CVE-2023-3613: Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or…
low3.5CVSS 3.1
AVNACLPRLUIRSUCNILAN
Mattermost WelcomeBot plugin fails to to validate the membership status when inviting or adding users to channels allowing guest accounts to be added or invited to channels by default.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost_plugins | <= 7.8.5 | — |
| mattermost | mattermost_server | < 7.8.6 | 7.8.6 |
| mattermost | mattermost_server | >= 7.9.0 < 7.10.3 | 7.10.3 |