CVE-2017-18912

Published: Jun 19, 2020
Updated: Apr 13, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2017-18912" target="_blank" rel="noopener"> CVE-2017-18912
Severity: Critical
Exploit:

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. It allows an attacker to specify a full pathname of a log file.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
mattermost / mattermost_server	3.7.0	3.7.5
mattermost / mattermost_server	3.8.0	3.8.2
mattermost / mattermost_server	-	3.6.7