CVE-2019-20843

Name of the Vulnerable Software and Affected Versions Mattermost Server versions prior to 5.18.0 Mattermost Server version 5.17.2 Mattermost Server version 5.16.4 Mattermost Server version 5.15.4 Mattermost Server version 5.9.7

Description The issue is related to weak permissions for configuration files in Mattermost Server.

Recommendations For versions prior to 5.18.0, update to version 5.18.0 or later. For version 5.17.2, update to version 5.18.0 or later. For version 5.16.4, update to version 5.18.0 or later. For version 5.15.4, update to version 5.18.0 or later. For version 5.9.7, update to version 5.18.0 or later.