VYPR
High severityNVD Advisory· Published Jun 19, 2020· Updated Aug 5, 2024

CVE-2017-18917

CVE-2017-18917

Description

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. Weak hashing was used for e-mail invitations, OAuth, and e-mail verification tokens.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
github.com/mattermost/mattermost-serverGo
< 3.7.5-0.20170421192444-247cd1e51a8c3.7.5-0.20170421192444-247cd1e51a8c
github.com/mattermost/mattermost-serverGo
>= 3.8.0, < 3.8.23.8.2

Affected products

3

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.