Vulnerabilities > CVE-2019-20853 - Exposure of Resource to Wrong Sphere vulnerability in Mattermost Packages

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

mattermost

CWE-668

critical

NVD

Published: 2020-06-19

Updated: 2020-06-30

Summary

An issue was discovered in Mattermost Packages before 5.16.3. A Droplet could allow Internet access to a service that has a remote code execution problem.

Vulnerable Configurations

Part	Description	Count
Application	Mattermost Mattermost Mattermost Packages *	1

Common Weakness Enumeration (CWE)

CWE-668 - Exposure of Resource to Wrong Sphere

References

https://mattermost.com/security-updates/