Vulnerability CVE-2024-29977
Published: 2024-08-01

Description:
Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6 fail to properly validate synced reactions, when shared channels are enabled, which allows a malicious remote to create arbitrary reactions on arbitrary posts

 References:
https://mattermost.com/security-updates
Copyright 2026, cxsecurity.com

 

Back to Top