CVE-2023-2515 Information

Description

Mattermost fails to restrict a user with permissions to edit other users and to create personal access tokens from elevating their privileges to system admin

Reference

https://mattermost.com/security-updates