Vulnerabilities > Mattermost > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-06-19 CVE-2017-18875 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used.
network
low complexity
mattermost CWE-732
4.9
2020-06-19 CVE-2017-18870 Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, and 4.3.4.
network
low complexity
mattermost CWE-732
4.3
2020-06-19 CVE-2019-20873 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8.
network
low complexity
mattermost
6.5
2020-06-19 CVE-2019-20872 Server-Side Request Forgery (SSRF) vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8.
local
low complexity
mattermost CWE-918
5.5
2020-06-19 CVE-2019-20870 Improper Input Validation vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.10.0.
network
low complexity
mattermost CWE-20
4.3
2020-06-19 CVE-2019-20869 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.10.0, 5.9.1, 5.8.2, and 4.10.9.
network
low complexity
mattermost
5.3
2020-06-19 CVE-2019-20867 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.11.0.
network
low complexity
mattermost
5.3
2020-06-19 CVE-2019-20866 HTTP Request Smuggling vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.12.0.
network
low complexity
mattermost CWE-444
5.3
2020-06-19 CVE-2019-20860 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.14.0, 5.13.3, 5.12.6, and 5.9.4.
local
low complexity
mattermost
5.5
2020-06-19 CVE-2020-14460 Unspecified vulnerability in Mattermost Server
An issue was discovered in Mattermost Server before 5.19.0, 5.18.1, 5.17.3, 5.16.5, and 5.9.8.
network
low complexity
mattermost
6.5