CVE-2025-25068 - Mattermost Authentication Bypass Vulnerability
CVE-2025-25068 - Mattermost Authentication Bypass Vulnerability
CVE ID : CVE-2025-25068 Published : March 21, 2025, 9:15 a.m. | 4 hours, 44 minutes ago Description : Mattermost versions 10.4.x Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more…
CVE ID : CVE-2025-25068
Published : March 21, 2025, 9:15 a.m. | 4 hours, 44 minutes ago
Description : Mattermost versions 10.4.x <= 10.4.2, 10.3.x <= 10.3.3, 9.11.x <= 9.11.8, 10.5.x <= 10.5.0 fail to enforce MFA on plugin endpoints, which allows authenticated attackers to bypass MFA protections via API requests to plugin-specific routes.
Severity: 7.5 | HIGH
Visit the link for more details, such as CVSS details, affected products, timeline, and more…