CVE-2023-2514

🗓️ 12 May 2023 08:56:56Reported by MattermostType

Mattermost Server fails to redact DB username and password in application log during initialization

Reporter	Title	Published	Views	Family All 9
CNNVD	Mattermost 日志信息泄露漏洞	12 May 202300:00	–	cnnvd
Cvelist	CVE-2023-2514 DB username/password revealed in application logs	12 May 202308:56	–	cvelist
EUVD	EUVD-2023-33996	3 Oct 202520:07	–	euvd
NVD	CVE-2023-2514	12 May 202309:15	–	nvd
Prion	Design/Logic Flaw	12 May 202309:15	–	prion
Positive Technologies	PT-2023-19934 · Mattermost · Mattermost Server	12 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-2514	23 May 202503:24	–	redhatcve
Veracode	Password Disclosure	19 May 202304:07	–	veracode
Vulnrichment	CVE-2023-2514 DB username/password revealed in application logs	12 May 202308:56	–	vulnrichment

NVD

Node

mattermost mattermostRange≤7.1.7

mattermost mattermostRange7.7.0–7.7.3

mattermost mattermostRange7.8.0–7.8.2

mattermost mattermostRange7.9.0–7.9.1

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "7.1.7",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.7.3",
        "status": "unaffected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.8.2",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "7.9.1",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "7.1.8"
      },
      {
        "status": "unaffected",
        "version": "7.7.4"
      },
      {
        "status": "unaffected",
        "version": "7.8.3"
      },
      {
        "status": "unaffected",
        "version": "7.9.2"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

21 Nov 2024 07:58Current

7High risk

Vulners AI Score7

CVSS 3.16.7 - 7.5

EPSS0.00335

SSVC