CVE-2024-40884 Information

Aug 24, 2024 cve

Description

Mattermost versions 9.5.x <= 9.5.7 9.10.x <= 9.10.0 fail to properly enforce permissions which allows a team admin user without \Add Team Members\ permission to disable the invite URL.

Reference

https://mattermost.com/security-updates

Share on: