CNNVD-202511-1730 Information

CNNVD ID

CNNVD-202511-1730

Related CVE

CVE-2025-11794

• CNNVD Published: 2025-11-14

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost 10.11.3及之前的10.11.x版本、10.5.11及之前的10.5.x版本和10.12.0及之前的10.12.x版本存在安全漏洞，该漏洞源于未清理用户数据，可能导致系统管理员访问密码哈希和MFA密钥。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. There is a security loophole in Mattermust 10.11.3 and earlier versions 10.11.x, 10.5.11 and earlier versions 10.5.x and 10.12.0 and earlier versions 10.12.x, which stems from uncleaned user data and may result in system administrators accessing passwords Hashi and MFA keys.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mattermost

Published

2025-11-14

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://access.redhat.com/security/cve/cve-2025-11794

Patch

https://mattermost.com/security-updates/