2 matches found
CVE-2017-18905
An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2, when used as an OAuth 2.0 service provider, Session invalidation was mishandled...
CVE-2017-18905
Mattermost Server before 4.0.0, 3.10.2, and 3.9.2 has an issue where session invalidation is mishandled when the server is used as an OAuth 2.0 service provider. This is documented across multiple sources (NVD entry CVE-2017-18905 and vendor/OSV advisories), all describing the same vulnerability ...