CVE-2025-25279Path Traversal in Mattermost Mattermost-server

CWE-22Path Traversal5 documents4 sources
Severity
7.5HIGHNVD
CNA9.9
EPSS
61.2%
top 1.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Github.com Mattermost Mattermost-serverGithub.com Mattermost Mattermost Server V8Mattermost Server+1 more
Timeline
PublishedFeb 24
Latest updateMar 3

Description

Mattermost versions 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to properly validate board blocks when importing boards which allows an attacker could read any arbitrary file on the system via importing and exporting a specially crafted import archive in Boards.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

NVDmattermost/mattermost_server9.11.09.11.8+3
Gogithub.com/mattermost_mattermost-server9.11.0-rc1+incompatible9.11.8+incompatible+3
Gogithub.com/mattermost_mattermost_server_v89.11.0-rc19.11.8+4
CVEListV5mattermost/mattermost10.4.010.4.1+3

🔴Vulnerability Details

4
OSV
Mattermost allows reading arbitrary files related to importing boards in github.com/mattermost/mattermost-server2025-03-03
OSV
Mattermost allows reading arbitrary files related to importing boards2025-02-24
GHSA
Mattermost allows reading arbitrary files related to importing boards2025-02-24
CVEList
Arbitrary file read in Mattermost Boards via import & export board archive2025-02-24