CVE-2017-18906

Publication date

2020-06-19 19:18:16

Family

mitre

State

PUBLISHED

Description

An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2, when Single Sign-On OAuth2 is used. An attacker could claim somebody elses account.