CNNVD-202512-4732 Information

CNNVD ID

CNNVD-202512-4732

Related CVE

CVE-2025-13767

• CNNVD Published: 2025-12-24

Description (Chinese)

Mattermost是美国Mattermost公司的一个开源协作平台。 Mattermost 11.1.0及之前的11.1.x版本、11.0.5及之前的11.0.x版本、10.12.3及之前的10.12.x版本和10.11.7及之前的10.11.x版本存在安全漏洞，该漏洞源于验证用户频道成员身份失败，可能导致信息泄露。

Description (English)

Mattermost is an open-source collaborative platform for Mattermost in the United States. Mattermust 11.1.0 and earlier, 11.0.x, 11.0.5 and earlier, 11.0.x, 10.12.3 and earlier, 10.12.x and 10.11.7 and earlier, have security loopholes, which stem from the failure to verify the membership of the user channel and may lead to the disclosure of information.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Mattermost

Published

2025-12-24

Last Modified

2026-02-24

References

https://mattermost.com/security-updates https://access.redhat.com/security/cve/cve-2025-13767

Patch

https://mattermost.com/security-updates/