CVE-2024-2450

Published Mar 15, 2024

Last updated 2 months ago

CVSS high 8.8

Overview

Description: Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to correctly verify account ownership when switching from email to SAML authentication, allowing an authenticated attacker to take over other user accounts via a crafted switch request under specific conditions.
Source: responsibledisclosure@mattermost.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 8.8
Impact score: 5.9
Exploitability score: 2.8
Vector string: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

responsibledisclosure@mattermost.com: CWE-287
nvd@nist.gov: CWE-306

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0ADAC025-32F2-4971-81F3-4D2939890060",
            "versionEndExcluding": "8.1.10",
            "versionStartIncluding": "8.1.0"
          },
          {
            "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "71A20DFB-85FA-480C-956A-24B50AB1862D",
            "versionEndExcluding": "9.2.6",
            "versionStartIncluding": "9.2.0"
          },
          {
            "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA0D2B39-6A65-4B91-925D-20087EF4CCB9",
            "versionEndExcluding": "9.3.2",
            "versionStartIncluding": "9.3.0"
          },
          {
            "criteria": "cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "74D75B50-ED53-47E4-A43A-1D3D8CFE4F8E",
            "versionEndExcluding": "9.4.3",
            "versionStartIncluding": "9.4.0"
          },
          {
            "criteria": "cpe:2.3:a:mattermost:mattermost_server:9.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B07517BC-19F5-4D44-BEB4-7D0CF9565707"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References