CVE-2017-18905

Name of the Vulnerable Software and Affected Versions: Mattermost Server versions prior to 4.0.0 Mattermost Server version 3.10.2 Mattermost Server version 3.9.2

Description: An issue was discovered in Mattermost Server when used as an OAuth 2.0 service provider, where session invalidation was mishandled.

Recommendations: For versions prior to 4.0.0, update to version 4.0.0 or later. For version 3.10.2, update to version 4.0.0 or later. For version 3.9.2, update to version 4.0.0 or later.