CVE-2017-18918
MEDIUM4.9EPSS 0.10%Mattermost Server does not restrict SAML certificate path for System Administrators
Published: 5/24/2022Modified: 2/22/2026
Description
An issue was discovered in Mattermost Server before 3.7.3 and 3.6.5. A System Administrator can place a SAML certificate at an arbitrary pathname.
Affected packages (2)
- Go/github.com/mattermost/mattermost-serverfrom 0, < 3.6.5
- Go/github.com/mattermost/mattermost-serverfrom 0, < 3.6.5+incompatible, >= 3.7.0+incompatible, < 3.7.3+incompatible
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | MEDIUM4.9 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N |
References (6)
- ADVISORYhttps://github.com/advisories/GHSA-5ghq-28r7-qwfj
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2017-18918
- PATCHhttps://github.com/mattermost/mattermost
- WEBhttps://github.com/mattermost/mattermost/commit/8ec37570742b67fd640bb3434ea226c655dbf408
- WEBhttps://github.com/mattermost/mattermost/commit/a12e7fdca439948ab097431d68e8f59778fbab81
- WEBhttps://mattermost.com/security-updates