Mattermost: >> Mattermost >> 7.7.3 Security Vulnerabilities
Mattermost Sever fails to redact the DB username and password before emitting an application log during server initialization.
CVSS Score
6.7
EPSS Score
0.001
Published
2023-05-12
Mattermost fails to invalidate existing authorization codes when deauthorizing an OAuth2 app, allowing an attacker possessing an authorization code to generate an access token.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-04-20
Page 3