Vulnerabilities > Mattermost

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2016-11064 Code Injection vulnerability in Mattermost Desktop
An issue was discovered in Mattermost Desktop App before 3.4.0.
network
low complexity
mattermost CWE-94
critical
9.8
2020-06-19 CVE-2016-11063 Cross-site Scripting vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.5.1.
network
low complexity
mattermost CWE-79
6.1
2020-06-19 CVE-2016-11062 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.5.1.
network
low complexity
mattermost CWE-732
5.3
2020-06-19 CVE-2015-9548 Resource Exhaustion vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 1.2.0.
network
low complexity
mattermost CWE-400
7.5
2020-06-19 CVE-2017-18912 Path Traversal vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7.
network
low complexity
mattermost CWE-22
critical
9.8
2020-06-19 CVE-2017-18911 Improper Certificate Validation vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7.
network
low complexity
mattermost CWE-295
critical
9.1
2020-06-19 CVE-2017-18910 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7.
network
low complexity
mattermost CWE-732
4.3
2020-06-19 CVE-2017-18909 Improper Certificate Validation vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 3.9.0 when SAML is used.
network
low complexity
mattermost CWE-295
7.5
2020-06-19 CVE-2017-18904 Cross-site Scripting vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2.
network
low complexity
mattermost CWE-79
6.1
2020-06-19 CVE-2017-18903 Cross-Site Request Forgery (CSRF) vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2.
network
low complexity
mattermost CWE-352
8.8