What is the Mattermost CNA?
Mattermost is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 335 CVE records since 2020.
How many CVEs has Mattermost published?
Mattermost has published 335 CVE records, including 211 in the last two years.
What is Mattermost's CVE data quality grade?
RadicalNotion.AI grades Mattermost's CVE data quality as A, with an overall completeness score of 99.9%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (99.4%) information.
What products does Mattermost publish CVEs for?
Mattermost most frequently publishes CVEs for Mattermost, mattermost-server, Mattermost Server, github.com/mattermost/mattermost-server, github.com/mattermost/mattermost/server/v8.
Which vendors does Mattermost cover?
Mattermost publishes CVEs across 4 distinct vendors, most often Mattermost, Bitnami, npm, apple, Golang.
Is Mattermost actively publishing CVEs?
Mattermost is currently active, based on 211 CVEs in the last two years.
What is the average severity of Mattermost's CVEs?
The average CVSS base score across Mattermost's scored CVEs is 4.7.
How many critical CVEs has Mattermost published?
Mattermost has published 9 critical-severity CVEs and 36 high-severity CVEs.
Are any of Mattermost's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Mattermost's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Mattermost's CVEs?
Mattermost's CVEs most often map to these CWE weakness types: CWE-863 (Incorrect Authorization), CWE-284 (Improper Access Control), CWE-400 (Uncontrolled Resource Consumption), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor).
How does Mattermost rank among CNAs?
By total CVE volume, Mattermost ranks #65 of 370 CNAs, and it reports more complete CVE records than 59% of all CNAs.
