CVE-2023-3591
4.8MEDIUMMattermost fails to invalidate previously generated password reset tokens when a new reset token was created.
Published: 7/17/2023Updated: 11/21/2024
Description
Mattermost fails to invalidate previously generated password reset tokens when a new reset token was created.
AI AnalysisPowered by AI
Affected Products
mattermostmattermost_server
mattermostmattermost_server
mattermostmattermost_server
References
- https://mattermost.com/security-updatesVendor Advisory
- https://mattermost.com/security-updatesVendor Advisory