Vulnerabilities > Mattermost > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-06-19 | CVE-2018-21253 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.1, 5.0.2, and 4.10.2. | 4.3 |
| 2020-06-19 | CVE-2018-21250 | Resource Exhaustion vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.2.2, 5.1.2, and 4.10.4. | 6.5 |
| 2020-06-19 | CVE-2017-18877 | Cross-site Scripting vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. | 6.1 |
| 2020-06-19 | CVE-2017-18876 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. | 4.9 |
| 2020-06-19 | CVE-2017-18875 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. | 4.9 |
| 2020-06-19 | CVE-2017-18870 | Incorrect Permission Assignment for Critical Resource vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, and 4.3.4. | 4.3 |
| 2020-06-19 | CVE-2019-20873 | Unspecified vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. | 6.5 |
| 2020-06-19 | CVE-2019-20872 | Server-Side Request Forgery (SSRF) vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. | 5.5 |
| 2020-06-19 | CVE-2019-20870 | Improper Input Validation vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.10.0. | 4.3 |
| 2020-06-19 | CVE-2019-20869 | Unspecified vulnerability in Mattermost Server An issue was discovered in Mattermost Server before 5.10.0, 5.9.1, 5.8.2, and 4.10.9. | 5.3 |