2 matches found
SUSE CVE-2017-18896
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows attackers to add DEBUG lines to the logs via a REST API version 3 logging endpoint...
CVE-2017-18896
Mattermost Server prior to 4.2.0, 4.1.1, and 4.0.5 is affected by CVE-2017-18896. A REST API v3 logging endpoint can be abused to inject DEBUG lines into logs, potentially exposing sensitive information. This is corroborated by multiple sources (SUSE, Red Hat, OSV, GHSA advisories) in connected d...