Vulnerabilities > Mattermost

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2018-21249 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.3.0.
network
high complexity
mattermost
3.7
2020-06-19 CVE-2018-21248 Insufficiently Protected Credentials vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.4.0.
network
low complexity
mattermost CWE-522
7.5
2020-06-19 CVE-2017-18877 Cross-site Scripting vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2.
network
low complexity
mattermost CWE-79
6.1
2020-06-19 CVE-2017-18876 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
2020-06-19 CVE-2017-18875 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
2020-06-19 CVE-2017-18871 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, 4.3.4, and 4.2.2.
network
low complexity
mattermost
7.5
2020-06-19 CVE-2017-18870 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, and 4.3.4.
network
low complexity
mattermost CWE-732
4.3
2020-06-19 CVE-2019-20874 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8.
network
low complexity
mattermost
7.5
2020-06-19 CVE-2019-20873 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8.
network
low complexity
mattermost
6.5
2020-06-19 CVE-2019-20872 Server-Side Request Forgery (SSRF) vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8.
local
low complexity
mattermost CWE-918
5.5