CNNVD-202506-2678 Information
CNNVD ID
CNNVD-202506-2678
Related CVE
- CNNVD Published: 2025-06-20
Description (Chinese)
Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost 10.5.5及之前的10.5.x版本、9.11.15及之前的9.11.x版本、10.8.0及之前的10.8.x版本、10.7.2及之前的10.7.x版本和10.6.5及之前的10.6.x版本存在安全漏洞,该漏洞源于未正确检索playbooks处理程序中的请求者信息,可能导致攻击者访问playbook运行。
Description (English)
Mattermost is an open-source collaborative platform for Mattermost in the United States. There are security gaps in Mettermust 10.5.5 and earlier versions of 10.5.x, 9.11.15 and earlier versions of 9.11.x, 10.8.0 and earlier versions of 10.8.x, 10.7.x and earlier versions of 10.7.2.2 and 10.6.5 and earlier versions of 10.6.x, which stem from the incorrect retrieval of the information of the requestor in the Playbooks processing process, which may lead to the attackers accessing Playbook.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Mattermost
Published
2025-06-20
Last Modified
2026-02-24
References
https://mattermost.com/security-updates
Patch
https://mattermost.com/download/
Share on: