CNNVD-202508-2639 Information

CNNVD ID

CNNVD-202508-2639

Related CVE

CVE-2025-49222

• CNNVD Published: 2025-08-21

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost存在安全漏洞，该漏洞源于未验证上传类型，可能导致上传非附件文件类型。以下版本受到影响：10.8.3及之前版本、10.5.8及之前版本、9.11.17及之前版本、10.9.2及之前版本和10.10.0及之前版本。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There is a security loophole in Matermost, which stems from the unverified type of upload, which may lead to the uploading of non-enclosed file types. The following versions were affected: 10.8.3 and earlier, 10.5.8 and earlier, 9.11.17 and earlier, 10.9.2 and earlier and 10.10.0 and earlier.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mattermost

Published

2025-08-21

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://nvd.nist.gov/vuln/detail/CVE-2025-49222

Patch

https://mattermost.com/download/