Vulnerabilities > Mattermost > Mattermost Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18898 | Improper Resource Shutdown or Release vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 5.3 |
| 2020-06-19 | CVE-2017-18897 | Open Redirect vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. | 6.1 |
| 2020-06-19 | CVE-2017-18896 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 5.3 |
| 2020-06-19 | CVE-2017-18895 | Information Exposure vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 5.3 |
| 2020-06-19 | CVE-2017-18893 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 6.1 |
| 2020-06-19 | CVE-2017-18892 | Improper Encoding or Escaping of Output vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 6.1 |
| 2020-06-19 | CVE-2017-18891 | Open Redirect vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. | 6.1 |
| 2020-06-19 | CVE-2017-18890 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.3 |
| 2020-06-19 | CVE-2017-18889 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.3 |
| 2020-06-19 | CVE-2017-18887 | Information Exposure vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 5.3 |