CVE-2019-20877

An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows attackers to obtain sensitive information about whether someone has 2FA enabled.
References
Link Resource
https://mattermost.com/security-updates/ Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:5.9.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:5.9.0:rc2:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:5.9.0:rc3:*:*:*:*:*:*
cpe:2.3:a:mattermost:mattermost_server:5.9.0:rc4:*:*:*:*:*:*

History

No history.

Information

Published : 2020-06-19 17:15

Updated : 2024-02-28 17:47


NVD link : CVE-2019-20877

Mitre link : CVE-2019-20877

CVE.ORG link : CVE-2019-20877


JSON object : View

Products Affected

mattermost

  • mattermost_server