CVE-2023-5968
Password hash in response body after username update
Mattermost fails to properly sanitize the user object when updating the username, resulting in the password hash being included in the response body.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Produtos afetados
Mattermost · MattermostQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
https://mattermost.com/security-updates