CVE-2023-3591

Published: Jul 17, 2023
Updated: Jul 28, 2023
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-3591" target="_blank" rel="noopener"> CVE-2023-3591
Severity: High
Exploit:

Mattermost fails to invalidate previously generated password reset tokens when a new reset token was created.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
mattermost / mattermost_server	7.8.0	7.8.7
mattermost / mattermost_server	7.10.0	7.10.3
mattermost / mattermost_server	7.9.0	7.9.5

Vulnerability Database