An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. It did not enforce the expiration date of a SAML response.
2020-06-19T18:15:10.803
2024-11-21T04:03:19.310
Modified
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:L/Au:S/C:P/I:P/A:P
8.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | mattermost | mattermost_server | < 4.5.2 | Yes |
| Application | mattermost | mattermost_server | < 4.6.2 | Yes |
| Application | mattermost | mattermost_server | 4.7.0 | Yes |
| Application | mattermost | mattermost_server | 4.7.0 | Yes |
| Application | mattermost | mattermost_server | 4.7.0 | Yes |
| Application | mattermost | mattermost_server | 4.7.0 | Yes |