CNNVD-202509-2257 Information

CNNVD ID

CNNVD-202509-2257

Related CVE

CVE-2025-9076

• CNNVD Published: 2025-09-15

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost 10.10.1及之前的10.10.x版本存在安全漏洞，该漏洞源于共享通道成员同步期间未正确清理用户数据，可能导致恶意或受攻击的远程集群通过未清理的用户对象访问敏感信息。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There is a security loophole in Mettermost 10.10.1 and previous version 10.10.x, which stems from the incorrect clean-up of user data during the synchronization of members of shared corridors, which may result in malicious or attacked long-range clusters accessing sensitive information through uncleaned user objects.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Matthias Van Woensel

Published

2025-09-15

Last Modified

2026-02-24

References

https://mattermost.com/security-updates

Patch

https://mattermost.com/security-updates/