← Back to CVE List
CVE-2024-23493
Mattermost fails to properly authorize the requests fetching team associated AD/LDAP groups, allowing a user to fetch details of AD/LDAP groups of a team that they are not a member of.
> MITRE Terms of Use apply – see LICENSE‑MITRE.txt