CVE-2023-1831
- Source
- https://cve.org/CVERecord?id=CVE-2023-1831
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-1831.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-1831
- Aliases
- Published
- 2023-04-17T15:15:06.923Z
- Modified
- 2026-04-10T04:54:31.491818Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Mattermost fails to redact from audit logsĀ the user password during user creation and the user password hash in other operations if the experimental audit logging configuration was enabled (ExperimentalAuditSettings section in config).
- References
Affected packages
Git / github.com/mattermost/mattermost-server
Affected ranges
- Type
- GIT
- Repo
- https://github.com/mattermost/mattermost-server
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixedIntroducedFixedIntroduced0 Unknown introduced commit / All previous commits are affectedLast affected
- Database specific
{ "versions": [ { "introduced": "0" }, { "fixed": "7.7.3" }, { "introduced": "7.8.0" }, { "fixed": "7.8.2" }, { "introduced": "0" }, { "last_affected": "7.9.0" } ] }
Affected versions
Other
cloud-2022-07-20-1
cloud-2022-08-10-1
cloud-2022-09-08-1
cloud-2022-10-06-1
cloud-2022-11-11-1
cloud-2022-11-24-1
v0.*
v0.5.0
v4.*
v4.10.0-rc1
v4.2.0-rc1
v4.3.0-rc1
v4.4.0-rc1
v4.5.0-rc1
v4.6.0-rc1
v4.6.0-rc2
v4.7.0-rc1
v4.8.0-rc1
v4.9.0-rc1
v5.*
v5.0.0-rc1
v5.1.0-rc1
v5.2.0-rc1
v5.2.0-rc2
v7.*
v7.7.0
v7.7.1
v7.7.2
v7.8.0
v7.8.1
v7.9.0