CNNVD-202506-3779 Information

CNNVD ID

CNNVD-202506-3779

Related CVE

CVE-2025-46702

• CNNVD Published: 2025-06-30

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在安全漏洞，该漏洞源于频道成员管理权限验证不足，可能导致未经授权的频道访问和权限提升。以下版本受到影响：10.5.5及之前版本、9.11.15及之前版本、10.8.0及之前版本、10.7.2及之前版本和10.6.5及之前版本。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There is a security loophole in Matermost, which stems from the inadequate verification of channel members ’ administrative competencies, which may lead to unauthorized channel access and enhanced privileges. The following versions were affected: 10.5.5 and earlier, 9.11.15 and earlier, 10.8.0 and earlier, 10.7.2 and earlier and 10.6.5 and earlier.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mattermost

Published

2025-06-30

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://access.redhat.com/security/cve/cve-2025-46702

Patch

https://mattermost.com/