CVE-2017-18883

Name of the Vulnerable Software and Affected Versions: Mattermost Server versions prior to 4.3.0 Mattermost Server version 4.2.1 Mattermost Server version 4.1.2

Description: An issue was discovered in Mattermost Server when serving as an OAuth 2.0 Service Provider, where there is low entropy for authorization data.

Recommendations: For versions prior to 4.3.0, update to version 4.3.0 or later. For version 4.2.1, update to version 4.3.0 or later. For version 4.1.2, update to version 4.3.0 or later.