Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mattermost mattermost vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-14448
An issue exists in Mattermost Server prior to 5.23.0. Automatic direct message replies allow malicious users to cause a denial of service (infinite loop), aka MMSA-2020-0020.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2020-14450
An issue exists in Mattermost Server prior to 5.22.0. The markdown renderer allows malicious users to cause a denial of service (client-side), aka MMSA-2020-0017.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2020-14459
An issue exists in Mattermost Server prior to 5.19.0. Attackers can rename a channel and cause a collision with a direct message, aka MMSA-2020-0002.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2020-14447
An issue exists in Mattermost Server prior to 5.23.0. Large webhook requests allow malicious users to cause a denial of service (infinite loop), aka MMSA-2020-0021.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2020-14449
An issue exists in Mattermost Mobile Apps prior to 1.30.0. Authorization tokens can sometimes be disclosed to third-party servers, aka MMSA-2020-0018.
Mattermost Mattermost Mobile
7.5
CVSSv3
CVE-2020-14451
An issue exists in Mattermost Mobile Apps prior to 1.29.0. The iOS app allowed Single Sign-On cookies and Local Storage to remain after a logout, aka MMSA-2020-0013.
Mattermost Mattermost Mobile
7.5
CVSSv3
CVE-2020-14453
An issue exists in Mattermost Server prior to 5.21.0. Socket read operations are not appropriately restricted, which allows malicious users to cause a denial of service, aka MMSA-2020-0005.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2020-14458
An issue exists in Mattermost Server prior to 5.19.0. Attackers can discover private channels via the "get channel by name" API, aka MMSA-2020-0004.
Mattermost Mattermost Server
7.5
CVSSv3
CVE-2019-20843
An issue exists in Mattermost Server prior to 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There are weak permissions for configuration files.
Mattermost Mattermost Server
Mattermost Mattermost Server 5.18.0
7.5
CVSSv3
CVE-2019-20846
An issue exists in Mattermost Server prior to 5.18.0. It has weak permissions for server-local file storage.
Mattermost Mattermost Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »