CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-20841

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. CSRF can sometimes occur via a crafted web site for account takeover attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.0%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

Products affected by CVE-2019-20841

Mattermost » Mattermost Server » Version: N/A

cpe:2.3:a:mattermost:mattermost_server:-
Mattermost » Mattermost Server » Version: 0.5.0

cpe:2.3:a:mattermost:mattermost_server:0.5.0
Mattermost » Mattermost Server » Version: 0.6.0

cpe:2.3:a:mattermost:mattermost_server:0.6.0
Mattermost » Mattermost Server » Version: 1.0.0

cpe:2.3:a:mattermost:mattermost_server:1.0.0
Mattermost » Mattermost Server » Version: 1.1.0

cpe:2.3:a:mattermost:mattermost_server:1.1.0
Mattermost » Mattermost Server » Version: 1.1.1

cpe:2.3:a:mattermost:mattermost_server:1.1.1
Mattermost » Mattermost Server » Version: 1.2.0

cpe:2.3:a:mattermost:mattermost_server:1.2.0
Mattermost » Mattermost Server » Version: 1.2.1

cpe:2.3:a:mattermost:mattermost_server:1.2.1
Mattermost » Mattermost Server » Version: 1.3.0

cpe:2.3:a:mattermost:mattermost_server:1.3.0
Mattermost » Mattermost Server » Version: 1.4.0

cpe:2.3:a:mattermost:mattermost_server:1.4.0
Mattermost » Mattermost Server » Version: 2.0.0

cpe:2.3:a:mattermost:mattermost_server:2.0.0
Mattermost » Mattermost Server » Version: 2.1.0

cpe:2.3:a:mattermost:mattermost_server:2.1.0
Mattermost » Mattermost Server » Version: 2.2.0

cpe:2.3:a:mattermost:mattermost_server:2.2.0
Mattermost » Mattermost Server » Version: 3.0.0

cpe:2.3:a:mattermost:mattermost_server:3.0.0
Mattermost » Mattermost Server » Version: 3.0.1

cpe:2.3:a:mattermost:mattermost_server:3.0.1
Mattermost » Mattermost Server » Version: 3.0.2

cpe:2.3:a:mattermost:mattermost_server:3.0.2
Mattermost » Mattermost Server » Version: 3.0.3

cpe:2.3:a:mattermost:mattermost_server:3.0.3
Mattermost » Mattermost Server » Version: 3.1.0

cpe:2.3:a:mattermost:mattermost_server:3.1.0
Mattermost » Mattermost Server » Version: 3.10.0

cpe:2.3:a:mattermost:mattermost_server:3.10.0
Mattermost » Mattermost Server » Version: 3.10.1

cpe:2.3:a:mattermost:mattermost_server:3.10.1
Mattermost » Mattermost Server » Version: 3.10.2

cpe:2.3:a:mattermost:mattermost_server:3.10.2
Mattermost » Mattermost Server » Version: 3.10.3

cpe:2.3:a:mattermost:mattermost_server:3.10.3
Mattermost » Mattermost Server » Version: 3.2.0

cpe:2.3:a:mattermost:mattermost_server:3.2.0
Mattermost » Mattermost Server » Version: 3.3.0

cpe:2.3:a:mattermost:mattermost_server:3.3.0
Mattermost » Mattermost Server » Version: 3.4.0

cpe:2.3:a:mattermost:mattermost_server:3.4.0
Mattermost » Mattermost Server » Version: 3.5.0

cpe:2.3:a:mattermost:mattermost_server:3.5.0
Mattermost » Mattermost Server » Version: 3.5.1

cpe:2.3:a:mattermost:mattermost_server:3.5.1
Mattermost » Mattermost Server » Version: 3.5.2

cpe:2.3:a:mattermost:mattermost_server:3.5.2
Mattermost » Mattermost Server » Version: 3.5.3

cpe:2.3:a:mattermost:mattermost_server:3.5.3
Mattermost » Mattermost Server » Version: 3.6.0

cpe:2.3:a:mattermost:mattermost_server:3.6.0
Mattermost » Mattermost Server » Version: 3.6.1

cpe:2.3:a:mattermost:mattermost_server:3.6.1
Mattermost » Mattermost Server » Version: 3.6.2

cpe:2.3:a:mattermost:mattermost_server:3.6.2
Mattermost » Mattermost Server » Version: 3.6.3

cpe:2.3:a:mattermost:mattermost_server:3.6.3
Mattermost » Mattermost Server » Version: 3.6.4

cpe:2.3:a:mattermost:mattermost_server:3.6.4
Mattermost » Mattermost Server » Version: 3.6.5

cpe:2.3:a:mattermost:mattermost_server:3.6.5
Mattermost » Mattermost Server » Version: 3.6.6

cpe:2.3:a:mattermost:mattermost_server:3.6.6
Mattermost » Mattermost Server » Version: 3.6.7

cpe:2.3:a:mattermost:mattermost_server:3.6.7
Mattermost » Mattermost Server » Version: 3.7.0

cpe:2.3:a:mattermost:mattermost_server:3.7.0
Mattermost » Mattermost Server » Version: 3.7.1

cpe:2.3:a:mattermost:mattermost_server:3.7.1
Mattermost » Mattermost Server » Version: 3.7.2

cpe:2.3:a:mattermost:mattermost_server:3.7.2
Mattermost » Mattermost Server » Version: 3.7.3

cpe:2.3:a:mattermost:mattermost_server:3.7.3
Mattermost » Mattermost Server » Version: 3.7.4

cpe:2.3:a:mattermost:mattermost_server:3.7.4
Mattermost » Mattermost Server » Version: 3.7.5

cpe:2.3:a:mattermost:mattermost_server:3.7.5
Mattermost » Mattermost Server » Version: 3.7.6

cpe:2.3:a:mattermost:mattermost_server:3.7.6
Mattermost » Mattermost Server » Version: 3.8.0

cpe:2.3:a:mattermost:mattermost_server:3.8.0
Mattermost » Mattermost Server » Version: 3.8.1

cpe:2.3:a:mattermost:mattermost_server:3.8.1
Mattermost » Mattermost Server » Version: 3.8.2

cpe:2.3:a:mattermost:mattermost_server:3.8.2
Mattermost » Mattermost Server » Version: 3.8.3

cpe:2.3:a:mattermost:mattermost_server:3.8.3
Mattermost » Mattermost Server » Version: 3.9.0

cpe:2.3:a:mattermost:mattermost_server:3.9.0
Mattermost » Mattermost Server » Version: 3.9.1

cpe:2.3:a:mattermost:mattermost_server:3.9.1
Mattermost » Mattermost Server » Version: 3.9.2

cpe:2.3:a:mattermost:mattermost_server:3.9.2
Mattermost » Mattermost Server » Version: 4.0.0

cpe:2.3:a:mattermost:mattermost_server:4.0.0
Mattermost » Mattermost Server » Version: 4.0.1

cpe:2.3:a:mattermost:mattermost_server:4.0.1
Mattermost » Mattermost Server » Version: 4.0.2

cpe:2.3:a:mattermost:mattermost_server:4.0.2
Mattermost » Mattermost Server » Version: 4.0.3

cpe:2.3:a:mattermost:mattermost_server:4.0.3
Mattermost » Mattermost Server » Version: 4.0.4

cpe:2.3:a:mattermost:mattermost_server:4.0.4
Mattermost » Mattermost Server » Version: 4.0.5

cpe:2.3:a:mattermost:mattermost_server:4.0.5
Mattermost » Mattermost Server » Version: 4.1.0

cpe:2.3:a:mattermost:mattermost_server:4.1.0
Mattermost » Mattermost Server » Version: 4.1.1

cpe:2.3:a:mattermost:mattermost_server:4.1.1
Mattermost » Mattermost Server » Version: 4.1.2

cpe:2.3:a:mattermost:mattermost_server:4.1.2
Mattermost » Mattermost Server » Version: 4.10.0

cpe:2.3:a:mattermost:mattermost_server:4.10.0
Mattermost » Mattermost Server » Version: 4.10.1

cpe:2.3:a:mattermost:mattermost_server:4.10.1
Mattermost » Mattermost Server » Version: 4.10.10

cpe:2.3:a:mattermost:mattermost_server:4.10.10
Mattermost » Mattermost Server » Version: 4.10.2

cpe:2.3:a:mattermost:mattermost_server:4.10.2
Mattermost » Mattermost Server » Version: 4.10.3

cpe:2.3:a:mattermost:mattermost_server:4.10.3
Mattermost » Mattermost Server » Version: 4.10.4

cpe:2.3:a:mattermost:mattermost_server:4.10.4
Mattermost » Mattermost Server » Version: 4.10.5

cpe:2.3:a:mattermost:mattermost_server:4.10.5
Mattermost » Mattermost Server » Version: 4.10.6

cpe:2.3:a:mattermost:mattermost_server:4.10.6
Mattermost » Mattermost Server » Version: 4.10.7

cpe:2.3:a:mattermost:mattermost_server:4.10.7
Mattermost » Mattermost Server » Version: 4.10.8

cpe:2.3:a:mattermost:mattermost_server:4.10.8
Mattermost » Mattermost Server » Version: 4.10.9

cpe:2.3:a:mattermost:mattermost_server:4.10.9
Mattermost » Mattermost Server » Version: 4.2.0

cpe:2.3:a:mattermost:mattermost_server:4.2.0
Mattermost » Mattermost Server » Version: 4.2.1

cpe:2.3:a:mattermost:mattermost_server:4.2.1
Mattermost » Mattermost Server » Version: 4.2.2

cpe:2.3:a:mattermost:mattermost_server:4.2.2
Mattermost » Mattermost Server » Version: 4.3.0

cpe:2.3:a:mattermost:mattermost_server:4.3.0
Mattermost » Mattermost Server » Version: 4.3.1

cpe:2.3:a:mattermost:mattermost_server:4.3.1
Mattermost » Mattermost Server » Version: 4.3.2

cpe:2.3:a:mattermost:mattermost_server:4.3.2
Mattermost » Mattermost Server » Version: 4.3.3

cpe:2.3:a:mattermost:mattermost_server:4.3.3
Mattermost » Mattermost Server » Version: 4.3.4

cpe:2.3:a:mattermost:mattermost_server:4.3.4
Mattermost » Mattermost Server » Version: 4.4.0

cpe:2.3:a:mattermost:mattermost_server:4.4.0
Mattermost » Mattermost Server » Version: 4.4.1

cpe:2.3:a:mattermost:mattermost_server:4.4.1
Mattermost » Mattermost Server » Version: 4.4.2

cpe:2.3:a:mattermost:mattermost_server:4.4.2
Mattermost » Mattermost Server » Version: 4.4.3

cpe:2.3:a:mattermost:mattermost_server:4.4.3
Mattermost » Mattermost Server » Version: 4.4.4

cpe:2.3:a:mattermost:mattermost_server:4.4.4
Mattermost » Mattermost Server » Version: 4.4.5

cpe:2.3:a:mattermost:mattermost_server:4.4.5
Mattermost » Mattermost Server » Version: 4.5.0

cpe:2.3:a:mattermost:mattermost_server:4.5.0
Mattermost » Mattermost Server » Version: 4.5.1

cpe:2.3:a:mattermost:mattermost_server:4.5.1
Mattermost » Mattermost Server » Version: 4.5.2

cpe:2.3:a:mattermost:mattermost_server:4.5.2
Mattermost » Mattermost Server » Version: 4.6.0

cpe:2.3:a:mattermost:mattermost_server:4.6.0
Mattermost » Mattermost Server » Version: 4.6.1

cpe:2.3:a:mattermost:mattermost_server:4.6.1
Mattermost » Mattermost Server » Version: 4.6.2

cpe:2.3:a:mattermost:mattermost_server:4.6.2
Mattermost » Mattermost Server » Version: 4.6.3

cpe:2.3:a:mattermost:mattermost_server:4.6.3
Mattermost » Mattermost Server » Version: 4.7.0

cpe:2.3:a:mattermost:mattermost_server:4.7.0
Mattermost » Mattermost Server » Version: 4.7.1

cpe:2.3:a:mattermost:mattermost_server:4.7.1
Mattermost » Mattermost Server » Version: 4.7.2

cpe:2.3:a:mattermost:mattermost_server:4.7.2
Mattermost » Mattermost Server » Version: 4.7.3

cpe:2.3:a:mattermost:mattermost_server:4.7.3
Mattermost » Mattermost Server » Version: 4.7.4

cpe:2.3:a:mattermost:mattermost_server:4.7.4
Mattermost » Mattermost Server » Version: 4.8.0

cpe:2.3:a:mattermost:mattermost_server:4.8.0
Mattermost » Mattermost Server » Version: 4.8.1

cpe:2.3:a:mattermost:mattermost_server:4.8.1
Mattermost » Mattermost Server » Version: 4.8.2

cpe:2.3:a:mattermost:mattermost_server:4.8.2
Mattermost » Mattermost Server » Version: 4.9.0

cpe:2.3:a:mattermost:mattermost_server:4.9.0
Mattermost » Mattermost Server » Version: 4.9.1

cpe:2.3:a:mattermost:mattermost_server:4.9.1
Mattermost » Mattermost Server » Version: 4.9.2

cpe:2.3:a:mattermost:mattermost_server:4.9.2
Mattermost » Mattermost Server » Version: 4.9.3

cpe:2.3:a:mattermost:mattermost_server:4.9.3
Mattermost » Mattermost Server » Version: 4.9.4

cpe:2.3:a:mattermost:mattermost_server:4.9.4
Mattermost » Mattermost Server » Version: 5.0.0

cpe:2.3:a:mattermost:mattermost_server:5.0.0
Mattermost » Mattermost Server » Version: 5.0.1

cpe:2.3:a:mattermost:mattermost_server:5.0.1
Mattermost » Mattermost Server » Version: 5.0.2

cpe:2.3:a:mattermost:mattermost_server:5.0.2
Mattermost » Mattermost Server » Version: 5.0.3

cpe:2.3:a:mattermost:mattermost_server:5.0.3
Mattermost » Mattermost Server » Version: 5.1.0

cpe:2.3:a:mattermost:mattermost_server:5.1.0
Mattermost » Mattermost Server » Version: 5.1.1

cpe:2.3:a:mattermost:mattermost_server:5.1.1
Mattermost » Mattermost Server » Version: 5.1.2

cpe:2.3:a:mattermost:mattermost_server:5.1.2
Mattermost » Mattermost Server » Version: 5.15.0

cpe:2.3:a:mattermost:mattermost_server:5.15.0
Mattermost » Mattermost Server » Version: 5.15.1

cpe:2.3:a:mattermost:mattermost_server:5.15.1
Mattermost » Mattermost Server » Version: 5.15.2

cpe:2.3:a:mattermost:mattermost_server:5.15.2
Mattermost » Mattermost Server » Version: 5.15.3

cpe:2.3:a:mattermost:mattermost_server:5.15.3
Mattermost » Mattermost Server » Version: 5.16.0

cpe:2.3:a:mattermost:mattermost_server:5.16.0
Mattermost » Mattermost Server » Version: 5.16.1

cpe:2.3:a:mattermost:mattermost_server:5.16.1
Mattermost » Mattermost Server » Version: 5.16.2

cpe:2.3:a:mattermost:mattermost_server:5.16.2
Mattermost » Mattermost Server » Version: 5.16.3

cpe:2.3:a:mattermost:mattermost_server:5.16.3
Mattermost » Mattermost Server » Version: 5.17.0

cpe:2.3:a:mattermost:mattermost_server:5.17.0
Mattermost » Mattermost Server » Version: 5.17.1

cpe:2.3:a:mattermost:mattermost_server:5.17.1
Mattermost » Mattermost Server » Version: 5.18.0

cpe:2.3:a:mattermost:mattermost_server:5.18.0
Mattermost » Mattermost Server » Version: 5.2.0

cpe:2.3:a:mattermost:mattermost_server:5.2.0
Mattermost » Mattermost Server » Version: 5.2.1

cpe:2.3:a:mattermost:mattermost_server:5.2.1
Mattermost » Mattermost Server » Version: 5.2.2

cpe:2.3:a:mattermost:mattermost_server:5.2.2
Mattermost » Mattermost Server » Version: 5.3.0

cpe:2.3:a:mattermost:mattermost_server:5.3.0
Mattermost » Mattermost Server » Version: 5.3.1

cpe:2.3:a:mattermost:mattermost_server:5.3.1
Mattermost » Mattermost Server » Version: 5.4.0

cpe:2.3:a:mattermost:mattermost_server:5.4.0
Mattermost » Mattermost Server » Version: 5.5.0

cpe:2.3:a:mattermost:mattermost_server:5.5.0
Mattermost » Mattermost Server » Version: 5.5.1

cpe:2.3:a:mattermost:mattermost_server:5.5.1
Mattermost » Mattermost Server » Version: 5.5.2

cpe:2.3:a:mattermost:mattermost_server:5.5.2
Mattermost » Mattermost Server » Version: 5.5.3

cpe:2.3:a:mattermost:mattermost_server:5.5.3
Mattermost » Mattermost Server » Version: 5.6.0

cpe:2.3:a:mattermost:mattermost_server:5.6.0
Mattermost » Mattermost Server » Version: 5.6.1

cpe:2.3:a:mattermost:mattermost_server:5.6.1
Mattermost » Mattermost Server » Version: 5.6.2

cpe:2.3:a:mattermost:mattermost_server:5.6.2
Mattermost » Mattermost Server » Version: 5.6.3

cpe:2.3:a:mattermost:mattermost_server:5.6.3
Mattermost » Mattermost Server » Version: 5.6.4

cpe:2.3:a:mattermost:mattermost_server:5.6.4
Mattermost » Mattermost Server » Version: 5.6.5

cpe:2.3:a:mattermost:mattermost_server:5.6.5
Mattermost » Mattermost Server » Version: 5.7.0

cpe:2.3:a:mattermost:mattermost_server:5.7.0
Mattermost » Mattermost Server » Version: 5.7.1

cpe:2.3:a:mattermost:mattermost_server:5.7.1
Mattermost » Mattermost Server » Version: 5.7.2

cpe:2.3:a:mattermost:mattermost_server:5.7.2
Mattermost » Mattermost Server » Version: 5.7.3

cpe:2.3:a:mattermost:mattermost_server:5.7.3
Mattermost » Mattermost Server » Version: 5.8.0

cpe:2.3:a:mattermost:mattermost_server:5.8.0
Mattermost » Mattermost Server » Version: 5.8.1

cpe:2.3:a:mattermost:mattermost_server:5.8.1
Mattermost » Mattermost Server » Version: 5.8.2

cpe:2.3:a:mattermost:mattermost_server:5.8.2
Mattermost » Mattermost Server » Version: 5.9.0

cpe:2.3:a:mattermost:mattermost_server:5.9.0
Mattermost » Mattermost Server » Version: 5.9.1

cpe:2.3:a:mattermost:mattermost_server:5.9.1
Mattermost » Mattermost Server » Version: 5.9.2

cpe:2.3:a:mattermost:mattermost_server:5.9.2
Mattermost » Mattermost Server » Version: 5.9.3

cpe:2.3:a:mattermost:mattermost_server:5.9.3
Mattermost » Mattermost Server » Version: 5.9.4

cpe:2.3:a:mattermost:mattermost_server:5.9.4
Mattermost » Mattermost Server » Version: 5.9.5

cpe:2.3:a:mattermost:mattermost_server:5.9.5
Mattermost » Mattermost Server » Version: 5.9.6

cpe:2.3:a:mattermost:mattermost_server:5.9.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-20841

Products

Pricing

Contact Us