[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-10214":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T14:55:33.319Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":30,"aliases":31,"duplicate_of":9,"upstream":34,"downstream":35,"duplicates":42,"related":43,"reserved_at":9,"published_at":53,"modified_at":54,"state":55,"summary":56,"references_raw":64,"kevs":91,"epss":92,"epss_history":95,"metrics":365,"affected":378},"CVE-2024-10214","Mattermost versions 9.11.X \u003C= 9.11.1, 9.5.x \u003C= 9.5.9 icorrectly issues two sessions when using desktop SSO - one in the browser and one in desktop with incorrect settings.",null,[11,23],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-303","Incorrect Implementation of Authentication Algorithm","The requirements for the product dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect.","weakness","Draft","Base",[19],{"id":20,"name":21,"techniques":22},"CAPEC-90","Reflection Attack in Authentication Protocol",[],{"_key":24,"id":24,"name":25,"description":26,"type":27,"status":28,"abstraction":9,"likelihood_of_exploit":9,"capec":29},"NVD-CWE-OTHER","Other","NVD uses this CWE ID when the weakness does not map to any existing CWE entry.","placeholder","NVD-Reserved",[],[],[32,33],"GHSA-hm57-h27x-599c","GO-2024-3227",[],[36,38,40],{"_key":37},"OPENSUSE-SU-2024:0350-1",{"_key":39},"SUSE-SU-2024:3911-1",{"_key":41},"OPENSUSE-SU-2024:14447-1",[],[44,45,46,47,49,51],{"_key":37},{"_key":39},{"_key":41},{"_key":48},"CGA-GHFV-JHRC-5R6W",{"_key":50},"CGA-QJW9-4R87-RG6H",{"_key":52},"CGA-4C6G-9Q68-QR4F","2024-10-28T14:12:37.346Z","2024-10-28T14:55:50.766Z","Analyzed",{"cisa_kev":57,"cisa_ransomware":57,"cisa_vendor":9,"epss_severity":58,"epss_score":59,"severity":58,"severity_score":60,"severity_version":61,"severity_source":62,"severity_vector":63,"severity_status":55},false,"low",0.00363,3.5,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N",[65,73,78,82,86],{"url":66,"sources":67,"tags":70},"https://mattermost.com/security-updates",[62,68,69],"nvd","osv_go",[71,72],"Vendor Advisory","WEB",{"url":74,"sources":75,"tags":76},"https://nvd.nist.gov/vuln/detail/CVE-2024-10214",[69],[77],"Advisory",{"url":79,"sources":80,"tags":81},"https://github.com/mattermost/mattermost/commit/0d6b1070a26f0b9fc13f7e7fbbe18b6a31570c5a",[69],[72],{"url":83,"sources":84,"tags":85},"https://github.com/advisories/GHSA-hm57-h27x-599c",[69],[77],{"url":87,"sources":88,"tags":89},"https://github.com/mattermost/mattermost",[69],[90],"PACKAGE",[],{"date":93,"score":59,"percentile":94},"2026-06-04",0.58646,[96,100,103,106,109,112,115,118,121,124,127,130,132,135,138,142,145,148,151,154,157,160,163,166,169,172,175,178,181,184,187,190,193,197,200,203,206,209,212,215,218,221,225,228,231,234,237,240,243,245,248,251,254,257,260,263,266,269,272,275,278,281,284,287,290,292,295,298,301,304,307,310,313,316,319,322,325,328,331,333,336,339,341,344,347,350,353,356,359,362],{"date":97,"score":98,"percentile":99},"2025-11-04",0.00076,0.23221,{"date":101,"score":98,"percentile":102},"2025-11-05",0.23209,{"date":104,"score":98,"percentile":105},"2025-11-06",0.23214,{"date":107,"score":98,"percentile":108},"2025-11-07",0.23225,{"date":110,"score":98,"percentile":111},"2025-11-08",0.23216,{"date":113,"score":98,"percentile":114},"2025-11-09",0.23163,{"date":116,"score":98,"percentile":117},"2025-11-10",0.23106,{"date":119,"score":98,"percentile":120},"2025-11-11",0.23128,{"date":122,"score":98,"percentile":123},"2025-11-12",0.23184,{"date":125,"score":98,"percentile":126},"2025-11-13",0.23187,{"date":128,"score":98,"percentile":129},"2025-11-14",0.23179,{"date":131,"score":98,"percentile":114},"2025-11-15",{"date":133,"score":98,"percentile":134},"2025-11-16",0.23115,{"date":136,"score":98,"percentile":137},"2025-11-17",0.23073,{"date":139,"score":140,"percentile":141},"2025-11-18",0.00129,0.27294,{"date":143,"score":140,"percentile":144},"2025-11-19",0.27317,{"date":146,"score":140,"percentile":147},"2025-11-20",0.27323,{"date":149,"score":98,"percentile":150},"2025-11-21",0.23021,{"date":152,"score":98,"percentile":153},"2025-11-22",0.23016,{"date":155,"score":98,"percentile":156},"2025-11-23",0.22978,{"date":158,"score":98,"percentile":159},"2025-11-24",0.22938,{"date":161,"score":98,"percentile":162},"2025-11-25",0.22928,{"date":164,"score":98,"percentile":165},"2025-11-26",0.22909,{"date":167,"score":98,"percentile":168},"2025-11-27",0.22911,{"date":170,"score":98,"percentile":171},"2025-11-28",0.22888,{"date":173,"score":98,"percentile":174},"2025-11-29",0.22872,{"date":176,"score":98,"percentile":177},"2025-11-30",0.22863,{"date":179,"score":98,"percentile":180},"2025-12-01",0.229,{"date":182,"score":98,"percentile":183},"2025-12-02",0.22918,{"date":185,"score":98,"percentile":186},"2025-12-03",0.22931,{"date":188,"score":98,"percentile":189},"2025-12-04",0.2287,{"date":191,"score":98,"percentile":192},"2025-12-05",0.22916,{"date":194,"score":195,"percentile":196},"2025-12-06",0.00192,0.41234,{"date":198,"score":195,"percentile":199},"2025-12-07",0.41213,{"date":201,"score":195,"percentile":202},"2025-12-08",0.41219,{"date":204,"score":195,"percentile":205},"2025-12-09",0.41255,{"date":207,"score":195,"percentile":208},"2025-12-10",0.41314,{"date":210,"score":195,"percentile":211},"2025-12-11",0.41345,{"date":213,"score":195,"percentile":214},"2025-12-12",0.41375,{"date":216,"score":195,"percentile":217},"2025-12-13",0.41358,{"date":219,"score":195,"percentile":220},"2025-12-14",0.41318,{"date":222,"score":223,"percentile":224},"2025-12-15",0.00267,0.49992,{"date":226,"score":223,"percentile":227},"2025-12-16",0.50002,{"date":229,"score":223,"percentile":230},"2025-12-17",0.50027,{"date":232,"score":223,"percentile":233},"2025-12-18",0.50067,{"date":235,"score":223,"percentile":236},"2025-12-19",0.50071,{"date":238,"score":223,"percentile":239},"2025-12-20",0.50034,{"date":241,"score":223,"percentile":242},"2025-12-21",0.50005,{"date":244,"score":223,"percentile":224},"2025-12-22",{"date":246,"score":223,"percentile":247},"2025-12-23",0.49988,{"date":249,"score":223,"percentile":250},"2025-12-24",0.49998,{"date":252,"score":223,"percentile":253},"2025-12-25",0.50048,{"date":255,"score":223,"percentile":256},"2025-12-26",0.50037,{"date":258,"score":223,"percentile":259},"2025-12-27",0.50051,{"date":261,"score":223,"percentile":262},"2025-12-28",0.49979,{"date":264,"score":223,"percentile":265},"2025-12-29",0.49966,{"date":267,"score":223,"percentile":268},"2025-12-30",0.49964,{"date":270,"score":223,"percentile":271},"2025-12-31",0.50004,{"date":273,"score":223,"percentile":274},"2026-01-01",0.50167,{"date":276,"score":223,"percentile":277},"2026-01-02",0.50147,{"date":279,"score":223,"percentile":280},"2026-01-03",0.50139,{"date":282,"score":223,"percentile":283},"2026-01-04",0.49961,{"date":285,"score":223,"percentile":286},"2026-01-05",0.49945,{"date":288,"score":223,"percentile":289},"2026-01-06",0.49952,{"date":291,"score":223,"percentile":268},"2026-01-07",{"date":293,"score":223,"percentile":294},"2026-01-08",0.49991,{"date":296,"score":223,"percentile":297},"2026-01-09",0.4997,{"date":299,"score":223,"percentile":300},"2026-01-10",0.49965,{"date":302,"score":223,"percentile":303},"2026-01-11",0.49946,{"date":305,"score":223,"percentile":306},"2026-01-12",0.49902,{"date":308,"score":223,"percentile":309},"2026-01-13",0.49881,{"date":311,"score":223,"percentile":312},"2026-01-14",0.4993,{"date":314,"score":223,"percentile":315},"2026-01-15",0.49934,{"date":317,"score":223,"percentile":318},"2026-01-16",0.49955,{"date":320,"score":223,"percentile":321},"2026-01-17",0.49931,{"date":323,"score":223,"percentile":324},"2026-01-18",0.49907,{"date":326,"score":223,"percentile":327},"2026-01-19",0.4988,{"date":329,"score":223,"percentile":330},"2026-01-20",0.49883,{"date":332,"score":223,"percentile":330},"2026-01-21",{"date":334,"score":223,"percentile":335},"2026-01-22",0.49889,{"date":337,"score":223,"percentile":338},"2026-01-23",0.49937,{"date":340,"score":223,"percentile":286},"2026-01-24",{"date":342,"score":223,"percentile":343},"2026-01-25",0.49899,{"date":345,"score":223,"percentile":346},"2026-01-26",0.49872,{"date":348,"score":223,"percentile":349},"2026-01-27",0.49878,{"date":351,"score":223,"percentile":352},"2026-01-28",0.49891,{"date":354,"score":223,"percentile":355},"2026-01-29",0.49888,{"date":357,"score":223,"percentile":358},"2026-01-30",0.49893,{"date":360,"score":223,"percentile":361},"2026-01-31",0.499,{"date":363,"score":223,"percentile":364},"2026-02-01",0.50039,[366,371,373],{"source":62,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":367,"cvss_v4_0":9},{"baseScore":60,"baseSeverity":368,"vectorString":63,"impactScore":369,"exploitabilityScore":370},"LOW",2.3,5.4,{"source":68,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":372,"cvss_v4_0":9},{"baseScore":60,"baseSeverity":368,"vectorString":63,"impactScore":369,"exploitabilityScore":370},{"source":69,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":374,"cvss_v4_0":375},{"baseScore":60,"baseSeverity":9,"vectorString":63,"impactScore":369,"exploitabilityScore":370},{"baseScore":376,"baseSeverity":9,"vectorString":377,"impactScore":9,"exploitabilityScore":9},2.4,"CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",[379,390,395,400,409],{"ecosystem":380,"name":381,"vendor":382,"product":383,"cpe_part":9,"purl_type":384,"purl_namespace":382,"purl_name":383,"source":9,"versions":385},"Go","github.com/mattermost/mattermost-server","github.com/mattermost","mattermost-server","golang",[386],{"version":387,"is_range":388,"range_type":389,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"all",true,"semver",{"ecosystem":380,"name":391,"vendor":381,"product":392,"cpe_part":9,"purl_type":384,"purl_namespace":381,"purl_name":392,"source":9,"versions":393},"github.com/mattermost/mattermost-server/v5","v5",[394],{"version":387,"is_range":388,"range_type":389,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":380,"name":396,"vendor":381,"product":397,"cpe_part":9,"purl_type":384,"purl_namespace":381,"purl_name":397,"source":9,"versions":398},"github.com/mattermost/mattermost-server/v6","v6",[399],{"version":387,"is_range":388,"range_type":389,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},{"ecosystem":380,"name":401,"vendor":402,"product":403,"cpe_part":9,"purl_type":384,"purl_namespace":402,"purl_name":403,"source":9,"versions":404},"github.com/mattermost/mattermost/server/v8","github.com/mattermost/mattermost/server","v8",[405],{"version":406,"is_range":388,"range_type":389,"version_start":9,"version_start_type":9,"version_end":407,"version_end_type":408,"fixed_in":9},"lt8_0_0_20240821220019_0d6b1070a26f","8.0.0-20240821220019-0d6b1070a26f","excluding",{"ecosystem":9,"name":410,"vendor":411,"product":411,"cpe_part":412,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":413},"Mattermost","mattermost","a",[414,420],{"version":415,"is_range":388,"range_type":416,"version_start":417,"version_start_type":418,"version_end":419,"version_end_type":418,"fixed_in":9},"gte9.5.0_lte9.5.9","cpe","9.5.0","including","9.5.9",{"version":421,"is_range":388,"range_type":416,"version_start":422,"version_start_type":418,"version_end":423,"version_end_type":418,"fixed_in":9},"gte9.11.0_lte9.11.1","9.11.0","9.11.1"]