Vulnerabilities > Mattermost
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2017-18890 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.3 |
| 2020-06-19 | CVE-2017-18889 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 4.3 |
| 2020-06-19 | CVE-2017-18888 | SQL Injection vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 9.8 |
| 2020-06-19 | CVE-2017-18887 | Information Exposure vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 5.3 |
| 2020-06-19 | CVE-2017-18886 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 8.8 |
| 2020-06-19 | CVE-2017-18885 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 9.8 |
| 2020-06-19 | CVE-2017-18884 | Improper Privilege Management vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 8.1 |
| 2020-06-19 | CVE-2017-18883 | Insufficient Entropy vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2, when serving as an OAuth 2.0 Service Provider. | 9.1 |
| 2020-06-19 | CVE-2017-18882 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 6.1 |
| 2020-06-19 | CVE-2017-18881 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 6.1 |