CVE-2025-2570 | Mattermost up to 9.11.11/10.5.2/10.6.x RestrictSystemAdmin Setting authorization

Inserito da Angelo Barbosa | Mag 15, 2025 | CVE

A vulnerability was found in Mattermost up to 9.11.11/10.5.2/10.6.x. It has been classified as problematic. This affects an unknown part of the component RestrictSystemAdmin Setting Handler. The manipulation leads to incorrect authorization.

This vulnerability is uniquely identified as CVE-2025-2570. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-2570 | Mattermost up to 9.11.11/10.5.2/10.6.x RestrictSystemAdmin Setting authorization

Post correlati

CVE-2021-46911 | Linux Kernel up to 5.10.31/5.11/5.11.15 Page Refcount ch_ktls denial of service (8d5a9dbd2116/8348665d4181/1a73e427b824)

CVE-2024-11910 | WP Crowdfunding Plugin up to 2.1.12 on WordPress cross site scripting

CVE-2024-21644 | pyload up to 0.5.0b3.dev76 Flask Config access control

CVE-2024-49085 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 23H2 Routing/Remote Access Service integer overflow