Vulnerabilities > Mattermost > Mattermost Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18903 | Cross-Site Request Forgery (CSRF) vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2. | 8.8 |
| 2020-06-19 | CVE-2017-18894 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. | 8.1 |
| 2020-06-19 | CVE-2017-18886 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 8.8 |
| 2020-06-19 | CVE-2017-18884 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 8.1 |
| 2020-06-19 | CVE-2018-21264 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. | 8.8 |
| 2020-06-19 | CVE-2019-20888 | Memory Leak vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.7, 5.6.3, 5.5.2, and 4.10.5. | 7.5 |
| 2020-06-19 | CVE-2019-20886 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 7.5 |
| 2020-06-19 | CVE-2019-20885 | Missing Authorization vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 7.5 |
| 2020-06-19 | CVE-2019-20881 | Improper Restriction of Excessive Authentication Attempts vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0. | 7.3 |
| 2020-06-19 | CVE-2019-20880 | Allocation of Resources Without Limits or Throttling vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. | 7.5 |