CVE-2025-22445

Low CVSS: 3.5

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

Vendor

Mattermost

Product

Mattermost Server

CWE

CWE-754

Yayın Tarihi

2025-01-09 07:15:28

Güncelleme

2025-10-02 17:25:07

Source Identifier

responsibledisclosure@mattermost.com

KEV Date Added

Kategoriler

CWE-754 Mattermost Server LOW Mattermost 2025

Referanslar

https://mattermost.com/security-updates

Benzer Kayıtlar

Medium

CVE-2026-3112

Mattermost versions 11.4.x

Medium

CVE-2026-3113

Mattermost versions 11.4.x

Medium

CVE-2026-3114

Mattermost versions 11.4.x

Medium

CVE-2026-3115

Mattermost versions 11.2.x

High

CVE-2026-3108

Mattermost versions 11.2.x

Medium

CVE-2026-4274

Mattermost versions 11.2.x