mattermost
576 tracked vulnerabilities.
CVE-2019-20872
MEDIUM
Mattermost Server < 4.10.8 - Server-Side Request Forgery
Jun 19, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-20871
HIGH
Mattermost Server <5.9.0-4.10.8 - RCE
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20870
MEDIUM
Mattermost Server < 5.10.0 - Improper Input Validation via Edited Flag Bypass
Jun 19, 2020
CVSS 4.3
EPSS 0.00
CVE-2019-20869
MEDIUM
Mattermost Server <5.10.0-4.10.9 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20868
HIGH
Mattermost Server < 5.11.0 - Improper Input Validation in Invite ID Generation
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20867
MEDIUM
Mattermost Server <5.11.0 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20866
MEDIUM
Mattermost Server < 5.12.0 - HTTP Request Smuggling via Proxy Header Mishandling
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20865
HIGH
Mattermost Server < 4.10.10, 5.9.2, 5.10.2, 5.11.1 - Cross-Site Request Forgery
Jun 19, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-20864
HIGH
Mattermost Plugins <5.13.0 - Auth Bypass
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20863
HIGH
Mattermost Server <5.13.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20862
HIGH
Mattermost Server <5.13.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20861
HIGH
Mattermost Desktop App <4.2.2 - RCE
Jun 19, 2020
CVSS 8.8
EPSS 0.01
CVE-2019-20860
MEDIUM
Mattermost Server < 5.14.0, < 5.13.3, < 5.12.6, < 5.9.4 - Denial of Service via Crafted SVG Document
Jun 19, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-20859
HIGH
Mattermost Server <5.15.0 - Auth Bypass
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20858
HIGH
Mattermost Server < 5.15.0 - Denial of Service via SQL LIKE Clause
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20857
HIGH
Mattermost Server < 5.16.0 - Denial of Service via Backtick Character Overload
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20856
CRITICAL
Mattermost Desktop App < 4.3.0 - Uncontrolled Search Path Element
Jun 19, 2020
CVSS 9.8
EPSS 0.00
CVE-2019-20855
HIGH
Mattermost Server <5.16.1-5.9.6 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20854
HIGH
Mattermost Server < 5.17.0 - Denial of Service via LaTeX Message
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20853
CRITICAL
Mattermost Packages < 5.16.3 - Exposure of Resource to Wrong Sphere
Jun 19, 2020
CVSS 9.8
EPSS 0.02
CVE-2019-20852
HIGH
Mattermost Mobile < 1.26.0 - Sensitive Information Exposure in Local Logs
Jun 19, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-20851
CRITICAL
Mattermost Mobile Apps < 1.26.0 - Path Traversal and Arbitrary File Write via Video Preview Feature
Jun 19, 2020
CVSS 9.1
EPSS 0.01
CVE-2019-20850
MEDIUM
Mattermost Mobile Apps <1.26.0 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20849
MEDIUM
Mattermost Mobile Apps <1.26.0 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.00
CVE-2019-20848
HIGH
Mattermost Mobile Apps < 1.26.0 - Improper Input Validation in Quick Reply Feature
Jun 19, 2020
CVSS 7.5
EPSS 0.00
Products
mattermost_server 412
mattermost 233
mattermost-server 186
Mattermost 75
mattermost_desktop 23
mattermost_mobile 20
confluence 14
mattermost-plugin-confluence 14
mattermost-plugin-msteams 4
mattermost-plugin-playbooks 4
mattermost-plugin-jira 3
Focalboard 2
focalboard 2
mattermost-plugin-boards 2
mattermost-plugin-calls 2
mattermost-plugin-zoom 2
mattermost_boards 2
ms_teams 2
playbooks 2
zoom 2
channel_export 1
mattermost-plugin-channel-export 1
mattermost-plugin-github 1
mattermost_channel_export 1
mattermost_packages 1
mattermost_plugins 1
Quick Filters