CVE-2019-20877

Name of the Vulnerable Software and Affected Versions Mattermost Server versions prior to 5.9.0 Mattermost Server version 5.8.1 and earlier Mattermost Server version 5.7.3 and earlier Mattermost Server version 4.10.8 and earlier

Description An issue allows attackers to obtain sensitive information about whether someone has 2FA enabled.

Recommendations For versions prior to 5.9.0, update to version 5.9.0 or later. For version 5.8.1 and earlier, update to version 5.9.0 or later. For version 5.7.3 and earlier, update to version 5.9.0 or later. For version 4.10.8 and earlier, update to version 5.9.0 or later.