Vulnerability CVE-2023-48732
Published: 2024-01-02

Description:
Mattermost fails to scope the WebSocket response around notified users to a each user separately resulting in the WebSocket broadcasting the information about who was notified about a post to everyone else in the channel.

 References:
https://mattermost.com/security-updates
Copyright 2026, cxsecurity.com

 

Back to Top