How severe is CVE-2021-37862?

CVE-2021-37862 has a CVSS v3 score of 3.7 (LOW).

CVE-2021-37862

Name: mattermost_server
Author: mattermost

3.7LOW

Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration, which allows attackers to trick users into signing up using attacker-controlled email addresses via cra

Publicado: 12/17/2021Actualizado: 11/21/2024

Descripción

Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration, which allows attackers to trick users into signing up using attacker-controlled email addresses via crafted invitation token.

Análisis IAImpulsado por IA

Productos Afectados

mattermostmattermost_server

Referencias

https://hackerone.com/reports/1357013
Permissions Required
https://mattermost.com/security-updates/
Vendor Advisory
https://hackerone.com/reports/1357013
Permissions Required
https://mattermost.com/security-updates/
Vendor Advisory