CVE-2021-37861

Summary

Mattermost 6.0.2 and earlier fails to sufficiently sanitize user's password in audit logs when user creation fails.

Affected Software

VendorProductVersion RangeStatus
MattermostMattermostunspecified <= 6.0.2affected

Weaknesses

  • CWE-532: CWE-532 Information Exposure Through Log Files

ADP Enrichment

CVE Program Container

Additional References

References