mattermost
607 tracked vulnerabilities.
CVE-2019-20878
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-20877
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20876
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Auth Bypass
Jun 19, 2020
CVSS 5.4
EPSS 0.01
CVE-2019-20875
MEDIUM
Mattermost Server < 5.9.0, < 5.8.1, < 5.7.3, < 4.10.8 - Improper Authentication via Password Reset
Jun 19, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20874
HIGH
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20873
MEDIUM
Mattermost Server <5.9.0-4.10.8 - Info Disclosure
Jun 19, 2020
CVSS 6.5
EPSS 0.01
CVE-2019-20872
MEDIUM
Mattermost Server < 4.10.8 - Server-Side Request Forgery
Jun 19, 2020
CVSS 5.5
EPSS 0.00
CVE-2019-20871
HIGH
Mattermost Server <5.9.0-4.10.8 - RCE
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20870
MEDIUM
Mattermost Server < 5.10.0 - Improper Input Validation via Edited Flag Bypass
Jun 19, 2020
CVSS 4.3
EPSS 0.01
CVE-2019-20869
MEDIUM
Mattermost Server <5.10.0-4.10.9 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20868
HIGH
Mattermost Server < 5.11.0 - Improper Input Validation in Invite ID Generation
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20867
MEDIUM
Mattermost Server <5.11.0 - Info Disclosure
Jun 19, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20866
MEDIUM
Mattermost Server < 5.12.0 - HTTP Request Smuggling via Proxy Header Mishandling
Jun 19, 2020
CVSS 5.3
EPSS 0.01
CVE-2019-20865
HIGH
Mattermost Server < 4.10.10, 5.9.2, 5.10.2, 5.11.1 - Cross-Site Request Forgery
Jun 19, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-20864
HIGH
Mattermost Plugins <5.13.0 - Auth Bypass
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20863
HIGH
Mattermost Server <5.13.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20862
HIGH
Mattermost Server <5.13.0 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20861
HIGH
Mattermost Desktop App <4.2.2 - RCE
Jun 19, 2020
CVSS 8.8
EPSS 0.02
CVE-2019-20860
MEDIUM
Mattermost Server < 5.14.0, < 5.13.3, < 5.12.6, < 5.9.4 - Denial of Service via Crafted SVG Document
Jun 19, 2020
CVSS 5.5
EPSS 0.01
CVE-2019-20859
HIGH
Mattermost Server <5.15.0 - Auth Bypass
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20858
HIGH
Mattermost Server < 5.15.0 - Denial of Service via SQL LIKE Clause
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20857
HIGH
Mattermost Server < 5.16.0 - Denial of Service via Backtick Character Overload
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20856
CRITICAL
Mattermost Desktop App < 4.3.0 - Uncontrolled Search Path Element
Jun 19, 2020
CVSS 9.8
EPSS 0.01
CVE-2019-20855
HIGH
Mattermost Server <5.16.1-5.9.6 - Info Disclosure
Jun 19, 2020
CVSS 7.5
EPSS 0.01
CVE-2019-20854
HIGH
Mattermost Server < 5.17.0 - Denial of Service via LaTeX Message
Jun 19, 2020
CVSS 7.5
EPSS 0.01
Products
mattermost_server 452
mattermost 250
mattermost-server 212
Mattermost 104
mattermost_desktop 28
mattermost_mobile 20
confluence 14
mattermost-plugin-confluence 14
mattermost-plugin-playbooks 6
mattermost-plugin-github 4
mattermost-plugin-msteams 4
mattermost-plugin-calls 3
mattermost-plugin-jira 3
Focalboard 2
focalboard 2
mattermost-plugin-boards 2
mattermost-plugin-zoom 2
mattermost_boards 2
ms_teams 2
playbooks 2
zoom 2
Mattermost Google Drive Plugin 1
channel_export 1
github.com/mattermost/mattermost/server/public 1
legal_hold 1
mattermost-plugin-channel-export 1
mattermost-plugin-msteams-meetings 1
mattermost_channel_export 1
mattermost_packages 1
mattermost_plugins 1
Quick Filters