CVE-2025-64641Incorrect Authorization in Mattermost Mattermost-server

CWE-863Incorrect Authorization6 documents5 sources
Severity
4.1MEDIUMNVD
EPSS
0.0%
top 89.46%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Github.com Mattermost Mattermost-serverGithub.com Mattermost Mattermost Server V8Mattermost Server+1 more
Timeline
PublishedDec 24
Latest updateFeb 26

Description

Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.11.x <= 10.11.7 fail to verify that post actions invoking /share-issue-publicly were created by the Jira plugin which allowed a malicious Mattermost user to exfiltrate Jira tickets when victim users interacted with affected posts

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:NExploitability: 2.3 | Impact: 1.4

Affected Packages4 packages

NVDmattermost/mattermost_server10.11.010.11.8+3
Gogithub.com/mattermost_mattermost-server10.11.0+incompatible10.11.8+incompatible+7
Gogithub.com/mattermost_mattermost_server_v8< 8.0.0-20251121122154-b57c297c6d7
CVEListV5mattermost/mattermost11.1.011.1.0+3

🔴Vulnerability Details

4
OSV
Mattermost doesn't verify that post actions invoking `/share-issue-publicly` were created by the Jira plugin in github.com/mattermost/mattermost-server2026-02-26
CVEList
Mattermost Jira plugin crafted action leaks Jira issue details2025-12-24
GHSA
Mattermost doesn't verify that post actions invoking `/share-issue-publicly` were created by the Jira plugin2025-12-24
OSV
Mattermost doesn't verify that post actions invoking `/share-issue-publicly` were created by the Jira plugin2025-12-24

🕵️Threat Intelligence

1
Wiz
CVE-2025-64641 Impact, Exploitability, and Mitigation Steps | Wiz
CVE-2025-64641 — Incorrect Authorization | cvebase