Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-18886

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows a bypass of restrictions on use of slash commands.

2020-06-19T19:15:10.483

2024-11-21T03:21:10.830

Modified

CVSSv3.1: 8.8 (HIGH)

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.0

6.4

Type	Vendor	Product	Version/Range	Vulnerable?
Application	mattermost	mattermost_server	< 4.1.2	Yes
Application	mattermost	mattermost_server	< 4.2.1	Yes
Application	mattermost	mattermost_server	4.3.0	Yes
Application	mattermost	mattermost_server	4.3.0	Yes
Application	mattermost	mattermost_server	4.3.0	Yes
Application	mattermost	mattermost_server	4.3.0	Yes