CVE-2023-2514

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2023-2514
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-2514.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2023-2514
Published
2023-05-12T09:15:10Z
Modified
2025-01-14T11:34:57.664681Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVSS Calculator
Summary
[none]
Details

Mattermost Sever fails to redact the DB username and password before emitting an application log during server initialization. 

References

Affected packages

Git / github.com/mattermost/mattermost-server

Affected ranges

Type
GIT
Repo
https://github.com/mattermost/mattermost-server
Events
Introduced
f14c24391ca84740d90a29ec8b67579326eaa236
Last affected
2e0b83e9e86eee88578f8e0a9bb8215aa13bb46a
Introduced
c4d8c1450ab2b9538bbc2690ca1ee865567a5888
Last affected
6bcbd64dca8fec945c7abb83ba58c7b68abffa86
Introduced
ea08d47f6051f480153f9035e3b255b937ee5229
Last affected
975848b862e33caa1b8ce4db752bea1f0f15e258
Last affected
cb617a246c0df27429899645f23d1c2e41d611d9

Affected versions

v7.*

v7.7.0
v7.7.1
v7.7.2
v7.7.3
v7.8.0
v7.8.1
v7.8.2
v7.9.0
v7.9.1