CVE-2023-3586

Summary

CVE-2023-3586 is a vulnerability affecting Mattermost, an open-source team collaboration platform. Despite disabling the "Enable Publicly-Shared Boards" configuration option, Mattermost fails to hide previously-shared public Boards. This oversight means that these Boards remain accessible, potentially exposing sensitive information to unauthorized users. This issue may pose a significant risk to organizations using Mattermost for secure communication. It is recommended that affected organizations take immediate action to secure their Boards by either revoking access to the public Boards or implementing additional access controls.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.