CVE-2019-20855
published 2020-06-19CVE-2019-20855: An issue was discovered in Mattermost Server before 5.16.1, 5.15.2, 5.14.5, and 5.9.6. It allows attackers to obtain sensitive information (local files) during…
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
An issue was discovered in Mattermost Server before 5.16.1, 5.15.2, 5.14.5, and 5.9.6. It allows attackers to obtain sensitive information (local files) during legacy attachment migration.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mattermost | mattermost_server | < 5.9.6 | 5.9.6 |
| mattermost | mattermost_server | >= 5.14.0 < 5.14.5 | 5.14.5 |
| mattermost | mattermost_server | >= 5.15.0 < 5.15.2 | 5.15.2 |
| mattermost | mattermost_server | >= 5.16.0 < 5.16.1 | 5.16.1 |