GHSA-v39f-3xwx-xg8f
GitHub Security Advisory
⚠ Unreviewed
LOW
Has CVE
Advisory Details
Mattermost versions 9.5.x <= 9.5.5 and 9.8.0 fail to sanitize the RemoteClusterFrame payloads before audit logging them which allows a high privileged attacker with access to the audit logs to read message contents.
Related CVEs
Key Information
2.5
/10
Dataset
Last updated: August 2, 2025 6:46 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.