CVE-2025-22445

Опубликовано: 09 янв. 2025

Источник: nvd

CVSS3: 3.5

CVSS3: 5.3

EPSS Низкий

Описание

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

Ссылки

https://mattermost.com/security-updates
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mattermost:mattermost_server:*:*:*:*:*:*:*:*

Версия от 10.0.0 (включая) до 10.3.0 (исключая)

EPSS

Процентиль: 31%

0.00116

Низкий

3.5 Low

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-754

Связанные уязвимости

CVE-2025-22445

CVSS3: 3.5

redhat

12 месяцев назад

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing settings, which allows confusion for admins regarding a Calls security-sensitive configuration via incorrect UI reporting.

CVE-2025-22445

CVSS3: 3.5

debian

12 месяцев назад

Mattermost versions 10.x <= 10.2 fail to accurately reflect missing se ...

GHSA-7rgp-4j56-fm79

CVSS3: 3.5

github

12 месяцев назад

Mattermost has Improper Check for Unusual or Exceptional Conditions

SUSE-SU-2025:0297-1

suse-cvrf

11 месяцев назад

Security update for govulncheck-vulndb

EPSS

Процентиль: 31%

0.00116

Низкий

3.5 Low

CVSS3

5.3 Medium

CVSS3

Дефекты

CWE-754