CVE-2025-53971 | Mattermost up to 9.11.17/10.5.8 API Endpoint schemeRoles authorization

Inserito da Angelo Barbosa | Ago 21, 2025 | CVE

A vulnerability marked as problematic has been reported in Mattermost up to 9.11.17/10.5.8. Impacted is an unknown function of the file /api/v4/teams/team-id/members/user-id/schemeRoles of the component API Endpoint. Performing manipulation results in incorrect authorization.

This vulnerability is cataloged as CVE-2025-53971. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2025-53971 | Mattermost up to 9.11.17/10.5.8 API Endpoint schemeRoles authorization

Post correlati

CVE-2024-30656 | Fireboltt Dream Wristphone BSW202_FB_AAC_v2.0_20240110-20240110-1956 Deauth Frame denial of service

CVE-2024-50582 | JetBrains YouTrack up to 2024.3.47197 Markdown Element cross site scripting

CVE-2025-22558 | Marcus C. J. Hartmann mcjh Button Shortcode Plugin up to 1.6.4 on WordPress cross site scripting

CVE-2024-56582 | Linux Kernel up to 6.12.3 btrfs_encoded_read_endio use after free