CVE-2025-55070 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Mattermost versions
Medium CVSS: 6.5

CVE-2025-55070

Mattermost versions <11 fail to enforce multi-factor authentication on WebSocket connections which allows unauthenticated users to access sensitive information via WebSocket events
Vendor
Mattermost
Product
Mattermost Server
CWE
CWE-306
Yayın Tarihi
2025-11-14 08:15:45
Güncelleme
2025-11-17 17:51:05
Source Identifier
responsibledisclosure@mattermost.com
KEV Date Added
-

Kategoriler

CWE-306 Mattermost Server MEDIUM Mattermost 2025

Referanslar

https://mattermost.com/security-updates