CVE Daily – Mattermost (High+Critical) https://cvedaily.com/pages/tags/mattermost.html CVE Daily – Mattermost (High+Critical) en Wed, 03 Jun 2026 21:26:42 +0000 [High] CVE-2026-6957 – Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from fed... https://nvd.nist.gov/vuln/detail/CVE-2026-6957 https://nvd.nist.gov/vuln/detail/CVE-2026-6957 Wed, 27 May 2026 15:16:34 +0000 High CVE-2026-6957

Mattermost Plugins versions <=1.1.5 fail to sanitize filenames received from federated peers before using them to construct export destination paths, which allows an administrator of a remote federated Mattermost server to write files to arbitrary locations within the target server's filestore via a malicious filename delivered through the shared-channel attachment sync protocol. Mattermost Advis…

CVSS: 8.0 · CWE: CWE-22

View on NVD

]]> [High] CVE-2026-5740 – Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11... https://nvd.nist.gov/vuln/detail/CVE-2026-5740 https://nvd.nist.gov/vuln/detail/CVE-2026-5740 Fri, 22 May 2026 11:16:23 +0000 High CVE-2026-5740

Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to properly validate msgpack-encoded WebSocket frames before memory allocation which allows an unauthenticated remote attacker to crash the server process and cause a full service outage for all users via a crafted binary WebSocket message sent to the public WebSocket endpoint.. Mattermost Advisory…

CVSS: 7.5 · CWE: CWE-789

View on NVD

]]> [High] CVE-2026-4858 – Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11... https://nvd.nist.gov/vuln/detail/CVE-2026-4858 https://nvd.nist.gov/vuln/detail/CVE-2026-4858 Thu, 21 May 2026 09:16:30 +0000 High CVE-2026-4858

Mattermost versions 11.6.x <= 11.6.0, 11.5.x <= 11.5.3, 11.4.x <= 11.4.4, 10.11.x <= 10.11.14 fail to check integration URL for path traversal which allows an malicious authenticated user to call an arbitrary API via system admin Mattermost auth token using via path traversal in integration action URL.. Mattermost Advisory ID: MMSA-2026-00640

CVSS: 8.0 · CWE: CWE-22

View on NVD

]]> [High] CVE-2026-6347 – Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail... https://nvd.nist.gov/vuln/detail/CVE-2026-6347 https://nvd.nist.gov/vuln/detail/CVE-2026-6347 Mon, 18 May 2026 09:16:24 +0000 High CVE-2026-6347

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to sanitize sensitive configuration fields in the Mattermost Calls plugin which allows an attacker with access to a support packet to obtain TURN server credentials via the plaintext values present in the exported plugin configuration.. Mattermost Advisory ID: MMSA-2026-00605

CVSS: 7.6 · CWE: CWE-200

View on NVD

]]> [High] CVE-2026-6346 – Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail... https://nvd.nist.gov/vuln/detail/CVE-2026-6346 https://nvd.nist.gov/vuln/detail/CVE-2026-6346 Mon, 18 May 2026 09:16:24 +0000 High CVE-2026-6346

Mattermost versions 11.5.x <= 11.5.1, 10.11.x <= 10.11.13, 11.4.x <= 11.4.3 fail to sanitize sensitive configuration fields before including them in support packet generation, which allows a Mattermost System Admin or any party with access to a support packet to obtain sensitive credentials in plaintext via downloading a support packet from the System Console.. Mattermost Advisory ID: MMSA-2026-0…

CVSS: 8.7 · CWE: CWE-200

View on NVD

]]> [High] CVE-2026-3524 – Mattermost Plugin Legal Hold versions <=1.1.4 fail to halt request processing af... https://nvd.nist.gov/vuln/detail/CVE-2026-3524 https://nvd.nist.gov/vuln/detail/CVE-2026-3524 Mon, 06 Apr 2026 13:17:18 +0000 High CVE-2026-3524

Mattermost Plugin Legal Hold versions <=1.1.4 fail to halt request processing after a failed authorization check in ServeHTTP which allows an authenticated attacker to access, create, download, and delete legal hold data via crafted API requests to the plugin's endpoints. Mattermost Advisory ID: MMSA-2026-00621

CVSS: 8.8 · CWE: CWE-862

View on NVD

]]> [High] CVE-2026-3108 – Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 11.4.0, 11... https://nvd.nist.gov/vuln/detail/CVE-2026-3108 https://nvd.nist.gov/vuln/detail/CVE-2026-3108 Thu, 26 Mar 2026 17:16:41 +0000 High CVE-2026-3108

Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 11.4.0, 11.3.x <= 11.3.1 fail to sanitize user-controlled post content in the mmctl commands terminal output which allows attackers to manipulate administrator terminals via crafted messages containing ANSI and OSC escape sequences that enable screen manipulation, fake prompts, and clipboard hijacking.. Mattermost Advisory ID: M…

CVSS: 8.0 · CWE: CWE-150

View on NVD

]]> [High] CVE-2026-2476 – Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configurat... https://nvd.nist.gov/vuln/detail/CVE-2026-2476 https://nvd.nist.gov/vuln/detail/CVE-2026-2476 Mon, 16 Mar 2026 14:19:30 +0000 High CVE-2026-2476

Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which allows an attacker with access to support packets to obtain original plugin settings via exported configuration data. Mattermost Advisory ID: MMSA-2026-00606

CVSS: 7.6 · CWE: CWE-200

View on NVD

]]> [High] CVE-2026-24458 – Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail... https://nvd.nist.gov/vuln/detail/CVE-2026-24458 https://nvd.nist.gov/vuln/detail/CVE-2026-24458 Mon, 16 Mar 2026 14:18:16 +0000 High CVE-2026-24458

Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to properly handle very long passwords, which allows an attacker to overload the server CPU and memory via executing login attempts with multi-megabyte passwords. Mattermost Advisory ID: MMSA-2026-00587

CVSS: 7.5 · CWE: CWE-770

View on NVD

]]> [High] CVE-2026-1046 – Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links... https://nvd.nist.gov/vuln/detail/CVE-2026-1046 https://nvd.nist.gov/vuln/detail/CVE-2026-1046 Mon, 16 Feb 2026 13:16:00 +0000 High CVE-2026-1046

Mattermost Desktop App versions <=6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a user’s system via the user clicking on certain items in the Help menu Mattermost Advisory ID: MMSA-2026-00577

CVSS: 7.6 · CWE: CWE-939

View on NVD

]]> [High] CVE-2025-13523 – Mattermost Confluence plugin version <1.7.0 fails to properly escape user-contro... https://nvd.nist.gov/vuln/detail/CVE-2025-13523 https://nvd.nist.gov/vuln/detail/CVE-2025-13523 Fri, 06 Feb 2026 16:16:13 +0000 High CVE-2025-13523

Mattermost Confluence plugin version <1.7.0 fails to properly escape user-controlled display names in HTML template rendering which allows authenticated Confluence users with malicious display names to execute arbitrary JavaScript in victim browsers via sending a specially crafted OAuth2 connection link that, when visited, renders the attacker's display name without proper sanitization. Mattermos…

CVSS: 7.7 · CWE: CWE-79

View on NVD

]]> [High] CVE-2025-14273 – Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.1... https://nvd.nist.gov/vuln/detail/CVE-2025-14273 https://nvd.nist.gov/vuln/detail/CVE-2025-14273 Mon, 22 Dec 2025 12:16:19 +0000 High CVE-2025-14273

Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.11.x <= 10.11.7 with the Jira plugin enabled and Mattermost Jira plugin versions <=4.4.0 fail to enforce authentication and issue-key path restrictions in the Jira plugin, which allows an unauthenticated attacker who knows a valid user ID to issue authenticated GET and POST requests to the Jira server via crafted plugi…

CVSS: 7.2 · CWE: CWE-303

View on NVD

]]> [Critical] CVE-2025-12421 – Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10... https://nvd.nist.gov/vuln/detail/CVE-2025-12421 https://nvd.nist.gov/vuln/detail/CVE-2025-12421 Thu, 27 Nov 2025 18:15:46 +0000 Critical CVE-2025-12421

Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code…

CVSS: 9.9 · CWE: CWE-303

View on NVD

]]> [Critical] CVE-2025-12419 – Mattermost versions 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12, 1... https://nvd.nist.gov/vuln/detail/CVE-2025-12419 https://nvd.nist.gov/vuln/detail/CVE-2025-12419 Thu, 27 Nov 2025 16:15:46 +0000 Critical CVE-2025-12419

Mattermost versions 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12, 11.0.x <= 11.0.3 fail to properly validate OAuth state tokens during OpenID Connect authentication which allows an authenticated attacker with team creation privileges to take over a user account via manipulation of authentication data during the OAuth completion flow. This requires email verification to be disabled (d…

CVSS: 9.9 · CWE: CWE-303

View on NVD

]]> [High] CVE-2025-58075 – Mattermost versions 10.11.x <= 10.11.1, 10.10.x <= 10.10.2, 10.5.x <= 10.5.10 fa... https://nvd.nist.gov/vuln/detail/CVE-2025-58075 https://nvd.nist.gov/vuln/detail/CVE-2025-58075 Thu, 16 Oct 2025 09:15:35 +0000 High CVE-2025-58075

Mattermost versions 10.11.x <= 10.11.1, 10.10.x <= 10.10.2, 10.5.x <= 10.5.10 fail to verify a user has permission to join a Mattermost team using the original invite token which allows any attacked to join any team on a Mattermost server regardless of restrictions via manipulating the RelayState

CVSS: 8.1 · CWE: CWE-862

View on NVD

]]> [High] CVE-2025-58073 – Mattermost versions 10.11.x <= 10.11.1, 10.10.x <= 10.10.2, 10.5.x <= 10.5.10 fa... https://nvd.nist.gov/vuln/detail/CVE-2025-58073 https://nvd.nist.gov/vuln/detail/CVE-2025-58073 Thu, 16 Oct 2025 09:15:34 +0000 High CVE-2025-58073

Mattermost versions 10.11.x <= 10.11.1, 10.10.x <= 10.10.2, 10.5.x <= 10.5.10 fail to verify a user has permission to join a Mattermost team using the original invite token which allows any attacked to join any team on a Mattermost server regardless of restrictions via manipulating the OAuth state.

CVSS: 8.1 · CWE: CWE-862

View on NVD

]]> [High] CVE-2025-9079 – Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10... https://nvd.nist.gov/vuln/detail/CVE-2025-9079 https://nvd.nist.gov/vuln/detail/CVE-2025-9079 Fri, 19 Sep 2025 20:15:40 +0000 High CVE-2025-9079

Mattermost versions 10.8.x <= 10.8.3, 10.5.x <= 10.5.8, 9.11.x <= 9.11.17, 10.10.x <= 10.10.1, 10.9.x <= 10.9.3 fail to validate import directory path configuration which allows admin users to execute arbitrary code via malicious plugin upload to prepackaged plugins directory

CVSS: 8.0 · CWE: CWE-22

View on NVD

]]> [High] CVE-2025-9072 – Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail ... https://nvd.nist.gov/vuln/detail/CVE-2025-9072 https://nvd.nist.gov/vuln/detail/CVE-2025-9072 Mon, 15 Sep 2025 11:15:34 +0000 High CVE-2025-9072

Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a malicious link that, once a user authenticates with their SAML provider, could post the user’s cookies to an attacker-controlled URL.

CVSS: 7.6 · CWE: CWE-601

View on NVD

]]> [High] CVE-2025-54525 – Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected request b... https://nvd.nist.gov/vuln/detail/CVE-2025-54525 https://nvd.nist.gov/vuln/detail/CVE-2025-54525 Mon, 11 Aug 2025 19:15:30 +0000 High CVE-2025-54525

Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to create channel subscription endpoint with an invalid request body.

CVSS: 7.5 · CWE: CWE-1287

View on NVD

]]> [High] CVE-2025-54478 – Mattermost Confluence Plugin version <1.5.0 fails to enforce authentication of t... https://nvd.nist.gov/vuln/detail/CVE-2025-54478 https://nvd.nist.gov/vuln/detail/CVE-2025-54478 Mon, 11 Aug 2025 19:15:30 +0000 High CVE-2025-54478

Mattermost Confluence Plugin version <1.5.0 fails to enforce authentication of the user to the Mattermost instance which allows unauthenticated attackers to edit channel subscriptions via API call to the edit channel subscription endpoint.

CVSS: 7.2 · CWE: CWE-306

View on NVD

]]> [High] CVE-2025-52931 – Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected request b... https://nvd.nist.gov/vuln/detail/CVE-2025-52931 https://nvd.nist.gov/vuln/detail/CVE-2025-52931 Mon, 11 Aug 2025 19:15:28 +0000 High CVE-2025-52931

Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to update channel subscription endpoint with an invalid request body.

CVSS: 7.5 · CWE: CWE-754

View on NVD

]]> [High] CVE-2025-44004 – Mattermost Confluence Plugin version <1.5.0 fails to check the authorization of ... https://nvd.nist.gov/vuln/detail/CVE-2025-44004 https://nvd.nist.gov/vuln/detail/CVE-2025-44004 Mon, 11 Aug 2025 19:15:27 +0000 High CVE-2025-44004

Mattermost Confluence Plugin version <1.5.0 fails to check the authorization of the user to the Mattermost instance which allows attackers to create a channel subscription without proper authorization via API call to the create channel subscription endpoint.

CVSS: 7.2 · CWE: CWE-306

View on NVD

]]> [Critical] CVE-2025-4981 – Mattermost versions 10.5.x <= 10.5.5, 9.11.x <= 9.11.15, 10.8.x <= 10.8.0, 10.7... https://nvd.nist.gov/vuln/detail/CVE-2025-4981 https://nvd.nist.gov/vuln/detail/CVE-2025-4981 Fri, 20 Jun 2025 11:15:20 +0000 Critical CVE-2025-4981

Mattermost versions 10.5.x <= 10.5.5, 9.11.x <= 9.11.15, 10.8.x <= 10.8.0, 10.7.x <= 10.7.2, 10.6.x <= 10.6.5 fail to sanitize filenames in the archive extractor which allows authenticated users to write files to arbitrary locations on the filesystem via uploading archives with path traversal sequences in filenames, potentially leading to remote code execution. The vulnerability impacts instances…

CVSS: 9.9 · CWE: CWE-427

View on NVD

]]> [High] CVE-2025-25068 – Mattermost versions 10.4.x <= 10.4.2, 10.3.x <= 10.3.3, 9.11.x <= 9.11.8, 10.5.x... https://nvd.nist.gov/vuln/detail/CVE-2025-25068 https://nvd.nist.gov/vuln/detail/CVE-2025-25068 Fri, 21 Mar 2025 09:15:12 +0000 High CVE-2025-25068

Mattermost versions 10.4.x <= 10.4.2, 10.3.x <= 10.3.3, 9.11.x <= 9.11.8, 10.5.x <= 10.5.0 fail to enforce MFA on plugin endpoints, which allows authenticated attackers to bypass MFA protections via API requests to plugin-specific routes.

CVSS: 7.5 · CWE: CWE-306

View on NVD

]]> [Critical] CVE-2025-25279 – Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x... https://nvd.nist.gov/vuln/detail/CVE-2025-25279 https://nvd.nist.gov/vuln/detail/CVE-2025-25279 Mon, 24 Feb 2025 08:15:10 +0000 Critical CVE-2025-25279

Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to properly validate board blocks when importing boards which allows an attacker could read any arbitrary file on the system via importing and exporting a specially crafted import archive in Boards.

CVSS: 9.9 · CWE: CWE-22

View on NVD

]]> [Critical] CVE-2025-24490 – Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x... https://nvd.nist.gov/vuln/detail/CVE-2025-24490 https://nvd.nist.gov/vuln/detail/CVE-2025-24490 Mon, 24 Feb 2025 08:15:10 +0000 Critical CVE-2025-24490

Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to use prepared statements in the SQL query of boards reordering which allows an attacker to retrieve data from the database, via a SQL injection when reordering specially crafted boards categories.

CVSS: 9.6 · CWE: CWE-89

View on NVD

]]> [Critical] CVE-2025-20051 – Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x... https://nvd.nist.gov/vuln/detail/CVE-2025-20051 https://nvd.nist.gov/vuln/detail/CVE-2025-20051 Mon, 24 Feb 2025 08:15:10 +0000 Critical CVE-2025-20051

Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to properly validate input when patching and duplicating a board, which allows a user to read any arbitrary file on the system via duplicating a specially crafted block in Boards.

CVSS: 9.9 · CWE: CWE-22

View on NVD

]]> [High] CVE-2024-11599 – Mattermost versions 10.0.x <= 10.0.1, 10.1.x <= 10.1.1, 9.11.x <= 9.11.3, 9.5.x ... https://nvd.nist.gov/vuln/detail/CVE-2024-11599 https://nvd.nist.gov/vuln/detail/CVE-2024-11599 Thu, 28 Nov 2024 10:15:06 +0000 High CVE-2024-11599

Mattermost versions 10.0.x <= 10.0.1, 10.1.x <= 10.1.1, 9.11.x <= 9.11.3, 9.5.x <= 9.5.11 fail to properly validate email addresses which allows an unauthenticated user to bypass email domain restrictions via carefully crafted input on email registration.

CVSS: 8.2 · CWE: CWE-754

View on NVD

]]> [High] CVE-2024-39777 – Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= ... https://nvd.nist.gov/vuln/detail/CVE-2024-39777 https://nvd.nist.gov/vuln/detail/CVE-2024-39777 Thu, 01 Aug 2024 15:15:12 +0000 High CVE-2024-39777

Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= 9.8.1 fail to disallow unsolicited invites to expose access to local channels, when shared channels are enabled, which allows a malicious remote to send an invite with the ID of an existing local channel, and that local channel will then become shared without the consent of the local admin.

CVSS: 8.7 · CWE: CWE-284

View on NVD

]]> [High] CVE-2024-39274 – Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= ... https://nvd.nist.gov/vuln/detail/CVE-2024-39274 https://nvd.nist.gov/vuln/detail/CVE-2024-39274 Thu, 01 Aug 2024 15:15:12 +0000 High CVE-2024-39274

Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5 and 9.8.x <= 9.8.1 fail to properly validate that the channel that comes from the sync message is a shared channel, when shared channels are enabled, which allows a malicious remote to add users to arbitrary teams and channels

CVSS: 8.7 · CWE: CWE-284

View on NVD

]]> [High] CVE-2024-36492 – Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8... https://nvd.nist.gov/vuln/detail/CVE-2024-36492 https://nvd.nist.gov/vuln/detail/CVE-2024-36492 Thu, 01 Aug 2024 15:15:11 +0000 High CVE-2024-36492

Mattermost versions 9.9.x <= 9.9.0, 9.5.x <= 9.5.6, 9.7.x <= 9.7.5, 9.8.x <= 9.8.1 fail to disallow the modification of local users when syncing users in shared channels. which allows a malicious remote to overwrite an existing local user.

CVSS: 7.4 · CWE: CWE-284

View on NVD

]]> [High] CVE-2024-39830 – Mattermost versions 9.8.x <= 9.8.0, 9.7.x <= 9.7.4, 9.6.x <= 9.6.2 and 9.5.x <= ... https://nvd.nist.gov/vuln/detail/CVE-2024-39830 https://nvd.nist.gov/vuln/detail/CVE-2024-39830 Wed, 03 Jul 2024 09:15:07 +0000 High CVE-2024-39830

Mattermost versions 9.8.x <= 9.8.0, 9.7.x <= 9.7.4, 9.6.x <= 9.6.2 and 9.5.x <= 9.5.5, when shared channels are enabled, fail to use constant time comparison for remote cluster tokens which allows an attacker to retrieve the remote cluster token via a timing attack during remote cluster token comparison.

CVSS: 8.1 · CWE: CWE-287

View on NVD

]]> [High] CVE-2024-2450 – Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2,... https://nvd.nist.gov/vuln/detail/CVE-2024-2450 https://nvd.nist.gov/vuln/detail/CVE-2024-2450 Fri, 15 Mar 2024 10:15:08 +0000 High CVE-2024-2450

Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to correctly verify account ownership when switching from email to SAML authentication, allowing an authenticated attacker to take over other user accounts via a crafted switch request under specific conditions.

CVSS: 8.8 · CWE: CWE-287

View on NVD

]]> [High] CVE-2023-5356 – Incorrect authorization checks in GitLab CE/EE from all versions starting from 8... https://nvd.nist.gov/vuln/detail/CVE-2023-5356 https://nvd.nist.gov/vuln/detail/CVE-2023-5356 Fri, 12 Jan 2024 14:15:48 +0000 High CVE-2023-5356

Incorrect authorization checks in GitLab CE/EE from all versions starting from 8.13 before 16.5.6, all versions starting from 16.6 before 16.6.4, all versions starting from 16.7 before 16.7.2, allows a user to abuse slack/mattermost integrations to execute slash commands as another user.

CVSS: 7.3 · CWE: CWE-863

View on NVD

]]> [High] CVE-2023-7114 – Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which al... https://nvd.nist.gov/vuln/detail/CVE-2023-7114 https://nvd.nist.gov/vuln/detail/CVE-2023-7114 Fri, 29 Dec 2023 13:15:12 +0000 High CVE-2023-7114

Mattermost version 2.10.0 and earlier fails to sanitize deeplink paths, which allows an attacker to perform CSRF attacks against the server.

CVSS: 7.1 · CWE: CWE-74

View on NVD

]]> [High] CVE-2023-45316 – Mattermost fails to validate if a relative path is passed in /plugins/playbooks/... https://nvd.nist.gov/vuln/detail/CVE-2023-45316 https://nvd.nist.gov/vuln/detail/CVE-2023-45316 Tue, 12 Dec 2023 09:15:07 +0000 High CVE-2023-45316

Mattermost fails to validate if a relative path is passed in /plugins/playbooks/api/v0/telemetry/run/ as a telemetry run ID, allowing an attacker to use a path traversal payload that points to a different endpoint leading to a CSRF attack.

CVSS: 7.3 · CWE: CWE-352

View on NVD

]]> [High] CVE-2023-6458 – Mattermost webapp fails to validate route parameters in/<TEAM_NAME>/channels/<CH... https://nvd.nist.gov/vuln/detail/CVE-2023-6458 https://nvd.nist.gov/vuln/detail/CVE-2023-6458 Wed, 06 Dec 2023 09:15:08 +0000 High CVE-2023-6458

Mattermost webapp fails to validate route parameters in//channels/ allowing an attacker to perform a client-side path traversal.

CVSS: 7.1 · CWE: CWE-74

View on NVD

]]> [High] CVE-2023-3615 – Mattermost iOS app fails to properly validate the server certificate while initi... https://nvd.nist.gov/vuln/detail/CVE-2023-3615 https://nvd.nist.gov/vuln/detail/CVE-2023-3615 Mon, 17 Jul 2023 16:15:11 +0000 High CVE-2023-3615

Mattermost iOS app fails to properly validate the server certificate while initializing the TLS connection allowing a network attacker to intercept the WebSockets connection.

CVSS: 8.1 · CWE: CWE-295

View on NVD

]]> [High] CVE-2023-1831 – Mattermost fails to redact from audit logs the user password during user creatio... https://nvd.nist.gov/vuln/detail/CVE-2023-1831 https://nvd.nist.gov/vuln/detail/CVE-2023-1831 Mon, 17 Apr 2023 15:15:06 +0000 High CVE-2023-1831

Mattermost fails to redact from audit logs the user password during user creation and the user password hash in other operations if the experimental audit logging configuration was enabled (ExperimentalAuditSettings section in config).

CVSS: 7.2 · CWE: CWE-200

View on NVD

]]> [High] CVE-2023-1776 – Boards in Mattermost allows an attacker to upload a malicious SVG image file as ... https://nvd.nist.gov/vuln/detail/CVE-2023-1776 https://nvd.nist.gov/vuln/detail/CVE-2023-1776 Fri, 31 Mar 2023 12:15:06 +0000 High CVE-2023-1776

Boards in Mattermost allows an attacker to upload a malicious SVG image file as an attachment to a card and share it using a direct link to the file.

CVSS: 7.3 · CWE: CWE-79

View on NVD

]]> [High] CVE-2023-27264 – A missing permissions check in Mattermost Playbooks in Mattermost allows an atta... https://nvd.nist.gov/vuln/detail/CVE-2023-27264 https://nvd.nist.gov/vuln/detail/CVE-2023-27264 Mon, 27 Feb 2023 15:15:11 +0000 High CVE-2023-27264

A missing permissions check in Mattermost Playbooks in Mattermost allows an attacker to modify a playbook via the /plugins/playbooks/api/v0/playbooks/[playbookID] API.

CVSS: 7.1 · CWE: CWE-862

View on NVD

]]> [High] CVE-2021-37859 – Fixed a bypass for a reflected cross-site scripting vulnerability affecting OAut... https://nvd.nist.gov/vuln/detail/CVE-2021-37859 https://nvd.nist.gov/vuln/detail/CVE-2021-37859 Thu, 05 Aug 2021 20:15:09 +0000 High CVE-2021-37859

Fixed a bypass for a reflected cross-site scripting vulnerability affecting OAuth-enabled instances of Mattermost.

CVSS: 7.1 · CWE: CWE-79

View on NVD

]]> [Critical] CVE-2020-26290 – Dex is a federated OpenID Connect provider written in Go. In Dex before version ... https://nvd.nist.gov/vuln/detail/CVE-2020-26290 https://nvd.nist.gov/vuln/detail/CVE-2020-26290 Mon, 28 Dec 2020 20:15:12 +0000 Critical CVE-2020-26290

Dex is a federated OpenID Connect provider written in Go. In Dex before version 2.27.0 there is a critical set of vulnerabilities which impacts users leveraging the SAML connector. The vulnerabilities enables potential signature bypass due to issues with XML encoding in the underlying Go library. The vulnerabilities have been addressed in version 2.27.0 by using the xml-roundtrip-validator from M…

CVSS: 9.3 · CWE: CWE-347

View on NVD

]]> [Critical] CVE-2020-26276 – Fleet is an open source osquery manager. In Fleet before version 3.5.1, due to i... https://nvd.nist.gov/vuln/detail/CVE-2020-26276 https://nvd.nist.gov/vuln/detail/CVE-2020-26276 Thu, 17 Dec 2020 20:15:13 +0000 Critical CVE-2020-26276

Fleet is an open source osquery manager. In Fleet before version 3.5.1, due to issues in Go's standard library XML parsing, a valid SAML response may be mutated by an attacker to modify the trusted document. This can result in allowing unverified logins from a SAML IdP. Users that configure Fleet with SSO login may be vulnerable to this issue. This issue is patched in 3.5.1. The fix was made usin…

CVSS: 10.0 · CWE: CWE-290

View on NVD

]]> [High] CVE-2020-13891 – An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintend... https://nvd.nist.gov/vuln/detail/CVE-2020-13891 https://nvd.nist.gov/vuln/detail/CVE-2020-13891 Fri, 26 Jun 2020 17:15:10 +0000 High CVE-2020-13891

An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintended third-party servers could sometimes obtain authorization tokens, aka MMSA-2020-0022.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [Critical] CVE-2017-18920 – An issue was discovered in Mattermost Server before 3.6.2. The WebSocket feature... https://nvd.nist.gov/vuln/detail/CVE-2017-18920 https://nvd.nist.gov/vuln/detail/CVE-2017-18920 Fri, 19 Jun 2020 20:15:12 +0000 Critical CVE-2017-18920

An issue was discovered in Mattermost Server before 3.6.2. The WebSocket feature does not follow the Same Origin Policy.

CVSS: 9.8 · CWE: N/A

View on NVD

]]> [High] CVE-2017-18917 – An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. Wea... https://nvd.nist.gov/vuln/detail/CVE-2017-18917 https://nvd.nist.gov/vuln/detail/CVE-2017-18917 Fri, 19 Jun 2020 20:15:12 +0000 High CVE-2017-18917

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. Weak hashing was used for e-mail invitations, OAuth, and e-mail verification tokens.

CVSS: 7.5 · CWE: CWE-916

View on NVD

]]> [Critical] CVE-2017-18915 – An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. Aft... https://nvd.nist.gov/vuln/detail/CVE-2017-18915 https://nvd.nist.gov/vuln/detail/CVE-2017-18915 Fri, 19 Jun 2020 20:15:12 +0000 Critical CVE-2017-18915

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. After a restart of a server, an attacker might suddenly gain API Endpoint access.

CVSS: 9.8 · CWE: CWE-276

View on NVD

]]> [Critical] CVE-2017-18908 – An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2. A ... https://nvd.nist.gov/vuln/detail/CVE-2017-18908 https://nvd.nist.gov/vuln/detail/CVE-2017-18908 Fri, 19 Jun 2020 20:15:12 +0000 Critical CVE-2017-18908

An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2. A password-reset request was sometime sent to an attacker-provided e-mail address.

CVSS: 9.8 · CWE: CWE-287

View on NVD

]]> [High] CVE-2017-18906 – An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2, wh... https://nvd.nist.gov/vuln/detail/CVE-2017-18906 https://nvd.nist.gov/vuln/detail/CVE-2017-18906 Fri, 19 Jun 2020 20:15:12 +0000 High CVE-2017-18906

An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2, when Single Sign-On OAuth2 is used. An attacker could claim somebody else's account.

CVSS: 8.1 · CWE: CWE-287

View on NVD

]]> [Critical] CVE-2016-11074 – An issue was discovered in Mattermost Server before 3.0.0. A password-reset link... https://nvd.nist.gov/vuln/detail/CVE-2016-11074 https://nvd.nist.gov/vuln/detail/CVE-2016-11074 Fri, 19 Jun 2020 20:15:11 +0000 Critical CVE-2016-11074

An issue was discovered in Mattermost Server before 3.0.0. A password-reset link could be reused.

CVSS: 9.8 · CWE: CWE-287

View on NVD

]]> [High] CVE-2016-11069 – An issue was discovered in Mattermost Server before 3.2.0. It mishandles brute-f... https://nvd.nist.gov/vuln/detail/CVE-2016-11069 https://nvd.nist.gov/vuln/detail/CVE-2016-11069 Fri, 19 Jun 2020 20:15:11 +0000 High CVE-2016-11069

An issue was discovered in Mattermost Server before 3.2.0. It mishandles brute-force attempts at password change.

CVSS: 7.5 · CWE: CWE-521

View on NVD

]]> [High] CVE-2016-11066 – An issue was discovered in Mattermost Server before 3.2.0. The initial_load API ... https://nvd.nist.gov/vuln/detail/CVE-2016-11066 https://nvd.nist.gov/vuln/detail/CVE-2016-11066 Fri, 19 Jun 2020 20:15:10 +0000 High CVE-2016-11066

An issue was discovered in Mattermost Server before 3.2.0. The initial_load API disclosed unnecessary personal information.

CVSS: 7.5 · CWE: CWE-200

View on NVD

]]> [Critical] CVE-2016-11064 – An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be... https://nvd.nist.gov/vuln/detail/CVE-2016-11064 https://nvd.nist.gov/vuln/detail/CVE-2016-11064 Fri, 19 Jun 2020 20:15:10 +0000 Critical CVE-2016-11064

An issue was discovered in Mattermost Desktop App before 3.4.0. Strings could be executed as code via injection.

CVSS: 9.8 · CWE: CWE-94

View on NVD

]]> [High] CVE-2015-9548 – An issue was discovered in Mattermost Server before 1.2.0. It allows attackers t... https://nvd.nist.gov/vuln/detail/CVE-2015-9548 https://nvd.nist.gov/vuln/detail/CVE-2015-9548 Fri, 19 Jun 2020 20:15:10 +0000 High CVE-2015-9548

An issue was discovered in Mattermost Server before 1.2.0. It allows attackers to cause a denial of service (memory consumption) via a small compressed file that has a large size when uncompressed.

CVSS: 7.5 · CWE: CWE-400

View on NVD

]]> [Critical] CVE-2017-18912 – An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. It ... https://nvd.nist.gov/vuln/detail/CVE-2017-18912 https://nvd.nist.gov/vuln/detail/CVE-2017-18912 Fri, 19 Jun 2020 19:15:11 +0000 Critical CVE-2017-18912

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. It allows an attacker to specify a full pathname of a log file.

CVSS: 9.8 · CWE: CWE-22

View on NVD

]]> [Critical] CVE-2017-18911 – An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. The... https://nvd.nist.gov/vuln/detail/CVE-2017-18911 https://nvd.nist.gov/vuln/detail/CVE-2017-18911 Fri, 19 Jun 2020 19:15:11 +0000 Critical CVE-2017-18911

An issue was discovered in Mattermost Server before 3.8.2, 3.7.5, and 3.6.7. The X.509 certificate validation can be skipped for a TLS-based e-mail server.

CVSS: 9.1 · CWE: CWE-295

View on NVD

]]> [High] CVE-2017-18909 – An issue was discovered in Mattermost Server before 3.9.0 when SAML is used. Enc... https://nvd.nist.gov/vuln/detail/CVE-2017-18909 https://nvd.nist.gov/vuln/detail/CVE-2017-18909 Fri, 19 Jun 2020 19:15:11 +0000 High CVE-2017-18909

An issue was discovered in Mattermost Server before 3.9.0 when SAML is used. Encryption and signature verification are not mandatory.

CVSS: 7.5 · CWE: CWE-295

View on NVD

]]> [High] CVE-2017-18903 – An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2. CS... https://nvd.nist.gov/vuln/detail/CVE-2017-18903 https://nvd.nist.gov/vuln/detail/CVE-2017-18903 Fri, 19 Jun 2020 19:15:11 +0000 High CVE-2017-18903

An issue was discovered in Mattermost Server before 4.0.0, 3.10.2, and 3.9.2. CSRF can occur if CORS is enabled.

CVSS: 8.8 · CWE: CWE-352

View on NVD

]]> [Critical] CVE-2017-18900 – An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It... https://nvd.nist.gov/vuln/detail/CVE-2017-18900 https://nvd.nist.gov/vuln/detail/CVE-2017-18900 Fri, 19 Jun 2020 19:15:11 +0000 Critical CVE-2017-18900

An issue was discovered in Mattermost Server before 4.1.0, 4.0.4, and 3.10.3. It allows CSV injection via a compliance report.

CVSS: 9.8 · CWE: CWE-74

View on NVD

]]> [High] CVE-2017-18894 – An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, whe... https://nvd.nist.gov/vuln/detail/CVE-2017-18894 https://nvd.nist.gov/vuln/detail/CVE-2017-18894 Fri, 19 Jun 2020 19:15:10 +0000 High CVE-2017-18894

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5, when used as an OAuth 2.0 service provider. Sometimes. resource-owner authorization is bypassed, allowing account takeover.

CVSS: 8.1 · CWE: CWE-732

View on NVD

]]> [Critical] CVE-2017-18888 – An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It ... https://nvd.nist.gov/vuln/detail/CVE-2017-18888 https://nvd.nist.gov/vuln/detail/CVE-2017-18888 Fri, 19 Jun 2020 19:15:10 +0000 Critical CVE-2017-18888

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows SQL injection during the fetching of multiple posts.

CVSS: 9.8 · CWE: CWE-89

View on NVD

]]> [High] CVE-2017-18886 – An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It ... https://nvd.nist.gov/vuln/detail/CVE-2017-18886 https://nvd.nist.gov/vuln/detail/CVE-2017-18886 Fri, 19 Jun 2020 19:15:10 +0000 High CVE-2017-18886

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows a bypass of restrictions on use of slash commands.

CVSS: 8.8 · CWE: CWE-732

View on NVD

]]> [Critical] CVE-2017-18885 – An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It ... https://nvd.nist.gov/vuln/detail/CVE-2017-18885 https://nvd.nist.gov/vuln/detail/CVE-2017-18885 Fri, 19 Jun 2020 19:15:10 +0000 Critical CVE-2017-18885

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows attackers to gain privileges by accessing unintended API endpoints on a user's behalf.

CVSS: 9.8 · CWE: CWE-269

View on NVD

]]> [High] CVE-2017-18884 – An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It ... https://nvd.nist.gov/vuln/detail/CVE-2017-18884 https://nvd.nist.gov/vuln/detail/CVE-2017-18884 Fri, 19 Jun 2020 19:15:10 +0000 High CVE-2017-18884

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows attackers to gain privileges by using a registered OAuth application with personal access tokens.

CVSS: 8.1 · CWE: CWE-269

View on NVD

]]> [Critical] CVE-2017-18883 – An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2, whe... https://nvd.nist.gov/vuln/detail/CVE-2017-18883 https://nvd.nist.gov/vuln/detail/CVE-2017-18883 Fri, 19 Jun 2020 19:15:10 +0000 Critical CVE-2017-18883

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2, when serving as an OAuth 2.0 Service Provider. There is low entropy for authorization data.

CVSS: 9.1 · CWE: CWE-331

View on NVD

]]> [High] CVE-2018-21264 – An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. It ... https://nvd.nist.gov/vuln/detail/CVE-2018-21264 https://nvd.nist.gov/vuln/detail/CVE-2018-21264 Fri, 19 Jun 2020 18:15:10 +0000 High CVE-2018-21264

An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. It did not enforce the expiration date of a SAML response.

CVSS: 8.8 · CWE: CWE-20

View on NVD

]]> [High] CVE-2019-20888 – An issue was discovered in Mattermost Server before 5.7, 5.6.3, 5.5.2, and 4.10... https://nvd.nist.gov/vuln/detail/CVE-2019-20888 https://nvd.nist.gov/vuln/detail/CVE-2019-20888 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2019-20888

An issue was discovered in Mattermost Server before 5.7, 5.6.3, 5.5.2, and 4.10.5. It allows attackers to cause a denial of service (memory consumption) via an outgoing webhook or a slash command integration.

CVSS: 7.5 · CWE: CWE-401

View on NVD

]]> [High] CVE-2019-20886 – An issue was discovered in Mattermost Server before 5.8.0. The first user is som... https://nvd.nist.gov/vuln/detail/CVE-2019-20886 https://nvd.nist.gov/vuln/detail/CVE-2019-20886 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2019-20886

An issue was discovered in Mattermost Server before 5.8.0. The first user is sometimes inadvertently a system admin.

CVSS: 7.5 · CWE: CWE-269

View on NVD

]]> [High] CVE-2019-20885 – An issue was discovered in Mattermost Server before 5.8.0. It does not always ge... https://nvd.nist.gov/vuln/detail/CVE-2019-20885 https://nvd.nist.gov/vuln/detail/CVE-2019-20885 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2019-20885

An issue was discovered in Mattermost Server before 5.8.0. It does not always generate a robots.txt file.

CVSS: 7.5 · CWE: CWE-862

View on NVD

]]> [High] CVE-2019-20881 – An issue was discovered in Mattermost Server before 5.8.0. It mishandles brute-f... https://nvd.nist.gov/vuln/detail/CVE-2019-20881 https://nvd.nist.gov/vuln/detail/CVE-2019-20881 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2019-20881

An issue was discovered in Mattermost Server before 5.8.0. It mishandles brute-force attacks against MFA.

CVSS: 7.3 · CWE: CWE-307

View on NVD

]]> [High] CVE-2019-20880 – An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.1... https://nvd.nist.gov/vuln/detail/CVE-2019-20880 https://nvd.nist.gov/vuln/detail/CVE-2019-20880 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2019-20880

An issue was discovered in Mattermost Server before 5.8.0, 5.7.2, 5.6.5, and 4.10.7. It allows attackers to cause a denial of service (memory consumption) via OpenGraph.

CVSS: 7.5 · CWE: CWE-770

View on NVD

]]> [High] CVE-2018-21263 – An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. An ... https://nvd.nist.gov/vuln/detail/CVE-2018-21263 https://nvd.nist.gov/vuln/detail/CVE-2018-21263 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2018-21263

An issue was discovered in Mattermost Server before 4.7.0, 4.6.2, and 4.5.2. An attacker could authenticate to a different user's account via a crafted SAML response.

CVSS: 8.8 · CWE: CWE-287

View on NVD

]]> [High] CVE-2018-21262 – An issue was discovered in Mattermost Server before 4.7.3. It allows attackers t... https://nvd.nist.gov/vuln/detail/CVE-2018-21262 https://nvd.nist.gov/vuln/detail/CVE-2018-21262 Fri, 19 Jun 2020 17:15:13 +0000 High CVE-2018-21262

An issue was discovered in Mattermost Server before 4.7.3. It allows attackers to cause a denial of service (application crash) via invalid LaTeX text.

CVSS: 7.5 · CWE: CWE-20

View on NVD

]]> [High] CVE-2018-21258 – An issue was discovered in Mattermost Server before 5.1. It allows attackers to ... https://nvd.nist.gov/vuln/detail/CVE-2018-21258 https://nvd.nist.gov/vuln/detail/CVE-2018-21258 Fri, 19 Jun 2020 17:15:12 +0000 High CVE-2018-21258

An issue was discovered in Mattermost Server before 5.1. It allows attackers to cause a denial of service via the invite_people slash command.

CVSS: 7.5 · CWE: CWE-74

View on NVD

]]> [Critical] CVE-2018-21251 – An issue was discovered in Mattermost Server before 5.2 and 5.1.1. Authorization... https://nvd.nist.gov/vuln/detail/CVE-2018-21251 https://nvd.nist.gov/vuln/detail/CVE-2018-21251 Fri, 19 Jun 2020 17:15:12 +0000 Critical CVE-2018-21251

An issue was discovered in Mattermost Server before 5.2 and 5.1.1. Authorization could be bypassed if the channel name were not the same in the params and the body.

CVSS: 9.8 · CWE: CWE-862

View on NVD

]]> [High] CVE-2018-21248 – An issue was discovered in Mattermost Server before 5.4.0. It mishandles possess... https://nvd.nist.gov/vuln/detail/CVE-2018-21248 https://nvd.nist.gov/vuln/detail/CVE-2018-21248 Fri, 19 Jun 2020 17:15:12 +0000 High CVE-2018-21248

An issue was discovered in Mattermost Server before 5.4.0. It mishandles possession of superfluous authentication credentials.

CVSS: 7.5 · CWE: CWE-522

View on NVD

]]> [High] CVE-2017-18871 – An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, 4.3.4, and 4.2... https://nvd.nist.gov/vuln/detail/CVE-2017-18871 https://nvd.nist.gov/vuln/detail/CVE-2017-18871 Fri, 19 Jun 2020 17:15:11 +0000 High CVE-2017-18871

An issue was discovered in Mattermost Server before 4.5.0, 4.4.5, 4.3.4, and 4.2.2. It allows attackers to cause a denial of service (application crash) via an @ character before a JavaScript field name.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20874 – An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.1... https://nvd.nist.gov/vuln/detail/CVE-2019-20874 https://nvd.nist.gov/vuln/detail/CVE-2019-20874 Fri, 19 Jun 2020 16:15:10 +0000 High CVE-2019-20874

An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. It allows attackers to obtain sensitive information during a role change.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20871 – An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.1... https://nvd.nist.gov/vuln/detail/CVE-2019-20871 https://nvd.nist.gov/vuln/detail/CVE-2019-20871 Fri, 19 Jun 2020 16:15:10 +0000 High CVE-2019-20871

An issue was discovered in Mattermost Server before 5.9.0, 5.8.1, 5.7.3, and 4.10.8. The Markdown library allows catastrophic backtracking.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20868 – An issue was discovered in Mattermost Server before 5.11.0. Invite IDs were impr... https://nvd.nist.gov/vuln/detail/CVE-2019-20868 https://nvd.nist.gov/vuln/detail/CVE-2019-20868 Fri, 19 Jun 2020 16:15:10 +0000 High CVE-2019-20868

An issue was discovered in Mattermost Server before 5.11.0. Invite IDs were improperly generated.

CVSS: 7.5 · CWE: CWE-20

View on NVD

]]> [High] CVE-2019-20865 – An issue was discovered in Mattermost Server before 5.12.0, 5.11.1, 5.10.2, 5.9... https://nvd.nist.gov/vuln/detail/CVE-2019-20865 https://nvd.nist.gov/vuln/detail/CVE-2019-20865 Fri, 19 Jun 2020 16:15:10 +0000 High CVE-2019-20865

An issue was discovered in Mattermost Server before 5.12.0, 5.11.1, 5.10.2, 5.9.2, and 4.10.10. The login page allows CSRF.

CVSS: 8.8 · CWE: CWE-352

View on NVD

]]> [High] CVE-2019-20864 – An issue was discovered in Mattermost Plugins before 5.13.0. The GitHub plugin a... https://nvd.nist.gov/vuln/detail/CVE-2019-20864 https://nvd.nist.gov/vuln/detail/CVE-2019-20864 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20864

An issue was discovered in Mattermost Plugins before 5.13.0. The GitHub plugin allows an attacker to attach his Mattermost account to a different person's GitHub account.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20863 – An issue was discovered in Mattermost Server before 5.13.0. Incoming webhook cre... https://nvd.nist.gov/vuln/detail/CVE-2019-20863 https://nvd.nist.gov/vuln/detail/CVE-2019-20863 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20863

An issue was discovered in Mattermost Server before 5.13.0. Incoming webhook creation is not properly restricted.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20862 – An issue was discovered in Mattermost Server before 5.13.0. Non-members may fetc... https://nvd.nist.gov/vuln/detail/CVE-2019-20862 https://nvd.nist.gov/vuln/detail/CVE-2019-20862 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20862

An issue was discovered in Mattermost Server before 5.13.0. Non-members may fetch a team's slash commands.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20861 – An issue was discovered in Mattermost Desktop App before 4.2.2. It allows attack... https://nvd.nist.gov/vuln/detail/CVE-2019-20861 https://nvd.nist.gov/vuln/detail/CVE-2019-20861 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20861

An issue was discovered in Mattermost Desktop App before 4.2.2. It allows attackers to execute arbitrary code via a crafted link.

CVSS: 8.8 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20859 – An issue was discovered in Mattermost Server before 5.15.0. Login access control... https://nvd.nist.gov/vuln/detail/CVE-2019-20859 https://nvd.nist.gov/vuln/detail/CVE-2019-20859 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20859

An issue was discovered in Mattermost Server before 5.15.0. Login access control can be bypassed via crafted input.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20858 – An issue was discovered in Mattermost Server before 5.15.0. It allows attackers ... https://nvd.nist.gov/vuln/detail/CVE-2019-20858 https://nvd.nist.gov/vuln/detail/CVE-2019-20858 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20858

An issue was discovered in Mattermost Server before 5.15.0. It allows attackers to cause a denial of service (CPU consumption) via crafted characters in a SQL LIKE clause to an APIv4 endpoint.

CVSS: 7.5 · CWE: CWE-400

View on NVD

]]> [High] CVE-2019-20857 – An issue was discovered in Mattermost Server before 5.16.0. It allows attackers ... https://nvd.nist.gov/vuln/detail/CVE-2019-20857 https://nvd.nist.gov/vuln/detail/CVE-2019-20857 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20857

An issue was discovered in Mattermost Server before 5.16.0. It allows attackers to cause a denial of service (markdown renderer hang) via many backtick characters.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [Critical] CVE-2019-20856 – An issue was discovered in Mattermost Desktop App before 4.3.0 on macOS. It allo... https://nvd.nist.gov/vuln/detail/CVE-2019-20856 https://nvd.nist.gov/vuln/detail/CVE-2019-20856 Fri, 19 Jun 2020 15:15:10 +0000 Critical CVE-2019-20856

An issue was discovered in Mattermost Desktop App before 4.3.0 on macOS. It allows dylib injection.

CVSS: 9.8 · CWE: CWE-427

View on NVD

]]> [High] CVE-2019-20855 – An issue was discovered in Mattermost Server before 5.16.1, 5.15.2, 5.14.5, and ... https://nvd.nist.gov/vuln/detail/CVE-2019-20855 https://nvd.nist.gov/vuln/detail/CVE-2019-20855 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20855

An issue was discovered in Mattermost Server before 5.16.1, 5.15.2, 5.14.5, and 5.9.6. It allows attackers to obtain sensitive information (local files) during legacy attachment migration.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2019-20854 – An issue was discovered in Mattermost Server before 5.17.0. It allows remote att... https://nvd.nist.gov/vuln/detail/CVE-2019-20854 https://nvd.nist.gov/vuln/detail/CVE-2019-20854 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20854

An issue was discovered in Mattermost Server before 5.17.0. It allows remote attackers to cause a denial of service (client-side application crash) via a LaTeX message.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [Critical] CVE-2019-20853 – An issue was discovered in Mattermost Packages before 5.16.3. A Droplet could al... https://nvd.nist.gov/vuln/detail/CVE-2019-20853 https://nvd.nist.gov/vuln/detail/CVE-2019-20853 Fri, 19 Jun 2020 15:15:10 +0000 Critical CVE-2019-20853

An issue was discovered in Mattermost Packages before 5.16.3. A Droplet could allow Internet access to a service that has a remote code execution problem.

CVSS: 9.8 · CWE: CWE-668

View on NVD

]]> [High] CVE-2019-20852 – An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging i... https://nvd.nist.gov/vuln/detail/CVE-2019-20852 https://nvd.nist.gov/vuln/detail/CVE-2019-20852 Fri, 19 Jun 2020 15:15:10 +0000 High CVE-2019-20852

An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information (e.g., server addresses or message content).

CVSS: 7.5 · CWE: CWE-532

View on NVD

]]> [Critical] CVE-2019-20851 – An issue was discovered in Mattermost Mobile Apps before 1.26.0. An attacker can... https://nvd.nist.gov/vuln/detail/CVE-2019-20851 https://nvd.nist.gov/vuln/detail/CVE-2019-20851 Fri, 19 Jun 2020 15:15:10 +0000 Critical CVE-2019-20851

An issue was discovered in Mattermost Mobile Apps before 1.26.0. An attacker can use directory traversal with the Video Preview feature to overwrite arbitrary files on a device.

CVSS: 9.1 · CWE: CWE-22

View on NVD

]]> [High] CVE-2020-14459 – An issue was discovered in Mattermost Server before 5.19.0. Attackers can rename... https://nvd.nist.gov/vuln/detail/CVE-2020-14459 https://nvd.nist.gov/vuln/detail/CVE-2020-14459 Fri, 19 Jun 2020 14:15:11 +0000 High CVE-2020-14459

An issue was discovered in Mattermost Server before 5.19.0. Attackers can rename a channel and cause a collision with a direct message, aka MMSA-2020-0002.

CVSS: 7.5 · CWE: CWE-20

View on NVD

]]> [High] CVE-2020-14458 – An issue was discovered in Mattermost Server before 5.19.0. Attackers can discov... https://nvd.nist.gov/vuln/detail/CVE-2020-14458 https://nvd.nist.gov/vuln/detail/CVE-2020-14458 Fri, 19 Jun 2020 14:15:11 +0000 High CVE-2020-14458

An issue was discovered in Mattermost Server before 5.19.0. Attackers can discover private channels via the "get channel by name" API, aka MMSA-2020-0004.

CVSS: 7.5 · CWE: N/A

View on NVD

]]> [High] CVE-2020-14456 – An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin ... https://nvd.nist.gov/vuln/detail/CVE-2020-14456 https://nvd.nist.gov/vuln/detail/CVE-2020-14456 Fri, 19 Jun 2020 14:15:11 +0000 High CVE-2020-14456

An issue was discovered in Mattermost Desktop App before 4.4.0. The Same Origin Policy is mishandled during access-control decisions for web APIs, aka MMSA-2020-0006.

CVSS: 7.3 · CWE: CWE-346

View on NVD

]]> [High] CVE-2020-14453 – An issue was discovered in Mattermost Server before 5.21.0. Socket read operatio... https://nvd.nist.gov/vuln/detail/CVE-2020-14453 https://nvd.nist.gov/vuln/detail/CVE-2020-14453 Fri, 19 Jun 2020 14:15:11 +0000 High CVE-2020-14453

An issue was discovered in Mattermost Server before 5.21.0. Socket read operations are not appropriately restricted, which allows attackers to cause a denial of service, aka MMSA-2020-0005.

CVSS: 7.5 · CWE: CWE-345

View on NVD

]]> [High] CVE-2020-14451 – An issue was discovered in Mattermost Mobile Apps before 1.29.0. The iOS app all... https://nvd.nist.gov/vuln/detail/CVE-2020-14451 https://nvd.nist.gov/vuln/detail/CVE-2020-14451 Fri, 19 Jun 2020 14:15:11 +0000 High CVE-2020-14451

An issue was discovered in Mattermost Mobile Apps before 1.29.0. The iOS app allowed Single Sign-On cookies and Local Storage to remain after a logout, aka MMSA-2020-0013.

CVSS: 7.5 · CWE: CWE-459

View on NVD

]]>