Vulnerabilities > Mattermost

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2018-21254 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.1.
network
low complexity
mattermost CWE-732
4.3
2020-06-19 CVE-2018-21253 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.1, 5.0.2, and 4.10.2.
network
low complexity
mattermost CWE-732
4.3
2020-06-19 CVE-2018-21251 Missing Authorization vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.2 and 5.1.1.
network
low complexity
mattermost CWE-862
critical
9.8
2020-06-19 CVE-2018-21250 Resource Exhaustion vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.2.2, 5.1.2, and 4.10.4.
network
low complexity
mattermost CWE-400
6.5
2020-06-19 CVE-2018-21249 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.3.0.
network
high complexity
mattermost
3.7
2020-06-19 CVE-2018-21248 Insufficiently Protected Credentials vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.4.0.
network
low complexity
mattermost CWE-522
7.5
2020-06-19 CVE-2017-18877 Cross-site Scripting vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2.
network
low complexity
mattermost CWE-79
6.1
2020-06-19 CVE-2017-18876 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
2020-06-19 CVE-2017-18875 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
2020-06-19 CVE-2017-18871 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, 4.3.4, and 4.2.2.
network
low complexity
mattermost
7.5