Mattermost

499 tracked vulnerabilities.

CVE-2026-1628 MEDIUM
Mattermost Desktop App <=5.13.3 - Open Redirect
Mar 02, 2026
CVSS 4.6
EPSS 0.00
CVE-2025-14573 LOW
Mattermost <10.11.10 - Privilege Escalation
Feb 16, 2026
CVSS 3.8
EPSS 0.00
CVE-2025-14350 MEDIUM
Mattermost <11.1.2, 10.11.9, 11.2.1 - Info Disclosure
Feb 16, 2026
CVSS 4.3
EPSS 0.00
CVE-2025-13821 MEDIUM
Mattermost 11.1.x-11.1.2/10.11.x-10.11.9/11.2.x-11.2.1 - Info Discl...
Feb 16, 2026
CVSS 5.7
EPSS 0.00
CVE-2026-0999 MEDIUM
Mattermost 11.1.x-11.1.2 - Auth Bypass
Feb 16, 2026
CVSS 5.4
EPSS 0.00
CVE-2026-0998 MEDIUM
Mattermost 11.1.x-11.1.2 - Auth Bypass
Feb 16, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-0997 MEDIUM
Mattermost 11.1.x-11.1.2 - Privilege Escalation
Feb 16, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-22892 MEDIUM
Mattermost-server < 11.2.2 - Incorrect Authorization
Feb 13, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-20796 LOW
Mattermost <10.11.9 - Info Disclosure
Feb 13, 2026
CVSS 3.1
EPSS 0.00
CVE-2025-13523 HIGH
Mattermost-plugin-confluence < 1.7.0 - XSS
Feb 06, 2026
CVSS 7.7
EPSS 0.00
CVE-2025-14435 MEDIUM
Mattermost <10.11.8-11.1.1-11.0.6 - Authenticated DoS
Jan 16, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-14822 LOW
Mattermost <10.11.9 - DoS
Jan 16, 2026
CVSS 3.1
EPSS 0.00
CVE-2025-64641 MEDIUM
Mattermost Server < 10.11.8 - Incorrect Authorization
Dec 24, 2025
CVSS 4.1
EPSS 0.00
CVE-2025-13767 MEDIUM
Mattermost Server < 10.11.8 - Incorrect Authorization
Dec 24, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-14273 HIGH
Mattermost <11.1.0, 10.12.3, 10.11.7 - Auth Bypass
Dec 22, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-13326 LOW
Mattermost Desktop App <6.0.0 - Privilege Escalation
Dec 17, 2025
CVSS 3.9
EPSS 0.00
CVE-2025-13324 LOW
Mattermost Server < 10.11.6 - Incorrect Authorization
Dec 17, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-13321 LOW
Mattermost Desktop < 6.0.0 - Log Information Exposure
Dec 17, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-12689 MEDIUM
Mattermost <11.0.4, <10.12.2, <10.11.6 - DoS
Dec 17, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-62690 LOW
Mattermost Server < 10.11.5 - Open Redirect
Dec 17, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-62190 MEDIUM
Mattermost Server < 10.11.7 - CSRF
Dec 17, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-13352 LOW
Mattermost <10.11.7 - RCE
Dec 17, 2025
CVSS 3.0
EPSS 0.00
CVE-2025-13870 LOW
Mattermost Server < 10.5.13 - Missing Authentication
Dec 02, 2025
CVSS 3.1
EPSS 0.00
CVE-2025-12756 MEDIUM
Mattermost <11.0.2-10.12.1-10.11.4-10.5.12 - Privilege Escalation
Dec 01, 2025
CVSS 4.3
EPSS 0.00
CVE-2025-12421 CRITICAL
Mattermost <11.0.2, 10.12.1, 10.11.4, 10.5.12 - Auth Bypass
Nov 27, 2025
CVSS 9.9
EPSS 0.00
Products
mattermost_server 359 mattermost 207 mattermost-server 167 mattermost_desktop 23 mattermost_mobile 20 confluence 14 mattermost-plugin-confluence 14 mattermost-plugin-playbooks 3 mattermost-plugin-jira 3 zoom 2 mattermost_boards 2 mattermost-plugin-calls 2 mattermost-plugin-zoom 2 playbooks 2 mattermost-plugin-channel-export 1 mattermost_plugins 1 mattermost_channel_export 1 mattermost-plugin-boards 1 mattermost_packages 1 ms_teams 1 mattermost-plugin-github 1 mattermost-plugin-msteams 1
Quick Filters
Critical CVEs With Exploits In CISA KEV