CVE-2025-47871 | Mattermost up to 9.11.15/10.5.5/10.6.5/10.7.2/10.8.0 Run Metadata API Endpoint authorization

A vulnerability was found in Mattermost up to 9.11.15/10.5.5/10.6.5/10.7.2/10.8.0. It has been classified as problematic. Affected is an unknown function of the component Run Metadata API Endpoint. The manipulation leads to incorrect authorization.

This vulnerability is traded as CVE-2025-47871. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More