CVE-2024-36250 Information

Description

Mattermost versions 9.11.x <= 9.11.2 and 9.5.x <= 9.5.10 fail to protect the mfa code against replay attacks which allows an attacker to reuse the MFA code within ~30 seconds

Reference

https://mattermost.com/security-updates