CNNVD-202511-1729 Information

CNNVD ID

CNNVD-202511-1729

Related CVE

CVE-2025-55070

• CNNVD Published: 2025-11-14

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost 11之前版本存在安全漏洞，该漏洞源于WebSocket连接未强制执行多因素身份验证，可能导致未经验证的用户访问敏感信息。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There was a security loophole in the previous version of Matermost 11, which originated from the unenforceable multifactor authentication of WebSocket connection, which could lead to uncertified users accessing sensitive information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mattermost

Published

2025-11-14

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://access.redhat.com/security/cve/cve-2025-55070

Patch

https://mattermost.com/security-updates/