Vulnerabilities > Mattermost > Mattermost Server > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2019-20875 | Improper Authentication vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. | 5.3 |
| 2020-06-19 | CVE-2018-21261 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.8.1, 4.7.4, and 4.6.3. | 4.3 |
| 2020-06-19 | CVE-2018-21259 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.10.1, 4.9.4, and 4.8.2. | 5.3 |
| 2020-06-19 | CVE-2018-21257 | Missing Authorization vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.1. | 5.3 |
| 2020-06-19 | CVE-2018-21255 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.1. | 4.3 |
| 2020-06-19 | CVE-2018-21254 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.1. | 4.3 |
| 2020-06-19 | CVE-2018-21253 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.1, 5.0.2, and 4.10.2. | 4.3 |
| 2020-06-19 | CVE-2018-21250 | Resource Exhaustion vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.2.2, 5.1.2, and 4.10.4. | 6.5 |
| 2020-06-19 | CVE-2017-18877 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 6.1 |
| 2020-06-19 | CVE-2017-18876 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. | 4.9 |