CVE-2025-22449
Mattermost versions 9.11.x <= 9.11.5 fail to enforce invite permissions, which allows team admins, with no permission to invite users to their team, to invite users by updating the "allow_open_invite" field via making their team public.
Vendor
Product
CWE
Yayın Tarihi
2025-01-09 07:15:28
Güncelleme
2025-09-29 17:44:58
Source Identifier
responsibledisclosure@mattermost.com
KEV Date Added
-