CVE-2025-2424 in Mattermostinformazioni

Riassunto

di MITRE • 14/04/2025

Mattermost versions 10.5.x <= 10.5.1, 9.11.x <= 9.11.9 fail to check if a file has been deleted when creating a bookmark which allows an attacker who knows the IDs of deleted files to obtain metadata of the files via bookmark creation.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsabile

Mattermost

Prenotare

17/03/2025

Divulgazione

14/04/2025

Moderazione

accettato

CPE

pronto

EPSS

0.00225

KEV

no

Attività

molto basso

Fonti

Interested in the pricing of exploits?

See the underground prices here!