CVE-2017-18885
EUVD-2017-997519.06.2020, 19:15
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows attackers to gain privileges by accessing unintended API endpoints on a user's behalf.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| mattermost | mattermost_server | 𝑥 < 4.1.2 |
| mattermost | mattermost_server | 4.2.0 ≤ 𝑥 < 4.2.1 |
| mattermost | mattermost_server | 4.3.0:rc1 |
| mattermost | mattermost_server | 4.3.0:rc2 |
| mattermost | mattermost_server | 4.3.0:rc3 |
| mattermost | mattermost_server | 4.3.0:rc4 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration