Sensitive Information Disclosure via System Console UI

Sensitive Information Disclosure via System Console UI

CVE-2016-11078 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

An issue was discovered in Mattermost Server before 3.0.0. It potentially allows attackers to obtain sensitive information (credential fields within config.json) via the System Console UI.

Learn more about our Cis Benchmark Audit For Server Software.