CVE-2025-25274 Information

Description

Mattermost versions 10.4.x <= 10.4.2 10.3.x <= 10.3.3 9.11.x <= 9.11.8 fail to restrict command execution in archived channels which allows authenticated users to run commands in archived channels.

Reference

https://mattermost.com/security-updates