Known Vulnerabilities for Mattermost Server by Mattermost
Listed below are 10 of the newest known vulnerabilities associated with "Mattermost Server" by "Mattermost".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-3115 | Not Provided | 2026-03-26 | 2026-03-30 | |
| CVE-2026-3114 | Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2.3, 10.11.x <= 10.11.11 fail to validate decompressed a... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2026-3113 | Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2.3, 10.11.x <= 10.11.11 fail to set permissions on down... | Not Provided | 2026-03-26 | 2026-03-26 |
| CVE-2026-3112 | Not Provided | 2026-03-26 | 2026-03-30 | |
| CVE-2026-3108 | Not Provided | 2026-03-26 | 2026-03-30 | |
| CVE-2021-37863 | Mattermost 6.0 and earlier fails to sufficiently validate parameters during post creation, which allows authenticated attacke... | 5.7 - MEDIUM | 2021-12-17 | 2021-12-21 |
| CVE-2021-37862 | Mattermost 6.0 and earlier fails to sufficiently validate the email address during registration, which allows attackers to tr... | 5.4 - MEDIUM | 2021-12-17 | 2021-12-27 |
| CVE-2020-14450 | An issue was discovered in Mattermost Server before 5.22.0. The markdown renderer allows attackers to cause a denial of servi... | 7.5 - HIGH | 2020-06-19 | 2020-06-19 |
| CVE-2020-14448 | An issue was discovered in Mattermost Server before 5.23.0. Automatic direct message replies allow attackers to cause a denia... | 7.5 - HIGH | 2020-06-19 | 2020-06-20 |
| CVE-2020-14447 | An issue was discovered in Mattermost Server before 5.23.0. Large webhook requests allow attackers to cause a denial of servi... | 7.5 - HIGH | 2020-06-19 | 2020-06-19 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mattermost | Mattermost Server | 5.9.8 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.8 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.7 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.7 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.6 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.6 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.5 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.5 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.4 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.4 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.3 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.3 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.2 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.2 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.1 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.1 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.0 | All | All | All |
| Application | Mattermost | Mattermost Server | 5.9.0 | rc1 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.0 | rc2 | All | All |
| Application | Mattermost | Mattermost Server | 5.9.0 | rc3 | All | All |