← Back to CVE List

CVE-2024-40884

Published: 2024-08-22T16:15Z
Last Modified: 2024-10-17T14:05Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Mattermost versions 9.5.x <= 9.5.7, 9.10.x <= 9.10.0 fail to properly enforce permissions which allows a team admin user without "Add Team Members" permission to disable the invite URL. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt