CNNVD-202506-2673 Information
CNNVD ID
CNNVD-202506-2673
Related CVE
- CNNVD Published: 2025-06-20
Description (Chinese)
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在安全漏洞,该漏洞源于未正确执行频道成员管理权限,可能导致未经授权的用户添加或删除频道成员。以下版本受到影响:10.5.5及之前的10.5.x版本、9.11.15及之前的9.11.x版本、10.8.0及之前的10.8.x版本、10.7.2及之前的10.7.x版本和10.6.5及之前的10.6.x版本。
Description (English)
Mattermost is an open-source collaborative platform for Mattermost in the United States. There is a security loophole in Matermost, which stems from the incorrect implementation of channel members ’ administrative privileges and may lead to unauthorized users adding or deleting channel members. The following versions were affected: 10.5.5 and earlier, 10.5.x, 9.11.15 and earlier, 9.11.x, 10.8.0 and earlier, 10.7.x and 10.6.5 and earlier 10.6.x.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mattermost
Published
2025-06-20
Last Modified
2026-02-24
References
https://mattermost.com/security-updates
Patch
https://mattermost.com/download/
Share on: