CVE-2017-18894

Description

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. Sometimes. resource-owner authorization is bypassed, allowing account takeover.

CVSS Metrics

• v3.1•HIGH•Score: 8.1CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
• v2.0•MEDIUM•Score: 5.5AV:N/AC:L/Au:S/C:P/I:P/A:N

EPSS Trends

Current EPSS score: 0.21%• Percentile: 43%

Techniques & Countermeasures

• CWE-732•Incorrect Permission Assignment for Critical Resource

  The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Affected Systems

• github.com/mattermost•mattermost-server

  ≥ 4.2.0-rc1+incompatible, < 4.2.0+incompatible | < 4.0.5 | ≥ 4.1.0, < 4.1.1 | ≥ 4.2.0-rc1, < 4.2.0

• mattermost•mattermost_server

  < 4.0.5 | ≥ 4.1.0, < 4.1.1 | 4.2.0:rc1 | 4.2.0:rc2 | 4.2.0:rc3 | 4.2.0:rc4

References (5)

• https://mattermost.com/security-updates/
• https://nvd.nist.gov/vuln/detail/CVE-2017-18894
• https://github.com/mattermost/mattermost
• https://mattermost.com/security-updates
• https://github.com/advisories/GHSA-gg42-mwr6-p82c