CVE-2023-3591

HIGH8.2EPSS 0.27%

Published: 3/6/2024Modified: 4/3/2025

Description

Mattermost fails to invalidate previously generated password reset tokens when a new reset token was created.

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH8.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N