CNNVD-202506-1591 Information

CNNVD ID

CNNVD-202506-1591

Related CVE

CVE-2025-4573

• CNNVD Published: 2025-06-11

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在注入漏洞，该漏洞源于LDAP组ID验证不足，可能导致LDAP搜索过滤器注入。以下版本受到影响：10.7.x至10.7.1版本、10.6.x至10.6.3版本、10.5.x至10.5.4版本和9.11.x至9.11.13版本。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There is an injection loophole in Matermost, which stems from inadequate LDAP team ID verification, which may lead to LDAP search filter injection. The following versions were affected: 10.7.x-10.7.1, 10.6.x-10.6.3, 10.5.x-10.5.4 and 9.11.x-9.11.13.

Hazard Level

High

Vulnerability Type

注入

Affected Vendor

Mattermost

Published

2025-06-11

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://nvd.nist.gov/vuln/detail/CVE-2025-4573

Patch

https://mattermost.com/security-updates/