3 matches found
CVE-2017-18897
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. It mishandles a deny action for a redirection...
CVE-2017-18897
CVE-2017-18897 affects Mattermost Server pre-4.2.0, 4.1.1 and 4.0.5 when used as an OAuth 2.0 service provider. The issue is that the implementation mishandles a deny action for a redirection, constituting a logic/process flow problem in the OAuth redirect handling. Publicly provided connected so...
CVE-2017-18897
An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. It mishandles a deny action for a redirection...