CVE-2023-2792 Information

Description

Mattermost fails to sanitize ephemeral error messages allowing an attacker to obtain arbitrary message contents by a specially crafted /groupmsg command.

Reference

https://mattermost.com/security-updates/