Mattermost Server@5.18.0 Security Vulnerabilities and Issues — Mattermost Server@5.18.0 CVE List

Lucene search

MattermostMattermost Server5.18.0

4 matches found

CVE•added 2020/06/19 2:15 p.m.•36 views

CVE-2019-20843

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There are weak permissions for configuration files.

7.5CVSS7.5AI score0.00209EPSS

CVE•added 2020/06/19 2:15 p.m.•34 views

CVE-2019-20842

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There is SQL injection by admins via SearchAllChannels.

7.2CVSS7.4AI score0.00432EPSS

CVE•added 2020/06/19 2:15 p.m.•30 views

CVE-2019-20841

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. CSRF can sometimes occur via a crafted web site for account takeover attacks.

8.8CVSS8.5AI score0.00142EPSS

CVE•added 2020/06/19 2:15 p.m.•30 views

CVE-2019-20844

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. An attacker can spoof a direct-message channel by changing the type of a channel.

6.5CVSS6.3AI score0.00131EPSS