CVE-2024-32046

Vulnerability Description

Mattermost versions 9.6.x <= 9.6.0, 9.5.x <= 9.5.2, 9.4.x <= 9.4.4 and 8.1.x <= 8.1.11 fail to remove detailed error messages in API requests even if the developer mode is off which allows an attacker to get information about the server such as the full path were files are stored

Vulnerability Details

Published Date

April 26, 2024

Last Modified

May 12, 2025

Source

NVD

CVE-2024-32046

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment