CVE-2025-6227

Mattermost versions 10.5.x <= 10.5.7, 9.11.x <= 9.11.16 fail to negotiate a new token when accepting the invite which allows a user that intercepts both invite and password to send synchronization payloads to the server that originally created the invite via the REST API.

Published: Jul 18, 2025
Updated: Aug 11, 2025
CVE: CVE-2025-6227
GHSA: GHSA-4fwj-8595-wp25
Severity: Low
Exploit:

CVSS v3:

Severity: Unknown
Score:
AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N

CWEs:

CWE-522

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
github.com/mattermost/mattermost-server	10.5.0	10.5.8
github.com/mattermost/mattermost-server	9.11.0	9.11.17
github.com/mattermost/mattermost/server/v8	-	8.0.0-20250612074655-8f8612c63783

https://github.com/mattermost/mattermost/commit/fbf105f6ef8f6cd5a89f859f09a2d1216cd81c05
https://mattermost.com/security-updates

Vulnerability Database

CVE-2025-6227