CVE-2025-6233 Information

Jul 19, 2025 cve

Description

Mattermost versions 10.8.x <= 10.8.1 10.7.x <= 10.7.3 10.5.x <= 10.5.7 9.11.x <= 9.11.16 fail to sanitize input paths of file attachments in the bulk import JSONL file which allows a system admin to read arbitrary system files via path traversal.

Reference

https://mattermost.com/security-updates

CNNVD-202507-2432 (Published: 2025-07-18)

Share on:

CVE-2025-6233 Information

Description

Reference

Related CNNVD