CVE-2025-10545 | Mattermost up to 10.5.10/10.11.2 Guest User Permission members authorization

A vulnerability was found in Mattermost up to 10.5.10/10.11.2 and classified as problematic. Affected by this issue is some unknown functionality of the file /api/v4/channels/{channel_id}/members of the component Guest User Permission Handler. Executing manipulation can lead to incorrect authorization.

This vulnerability is registered as CVE-2025-10545. It is possible to launch the attack remotely. No exploit is available.

It is suggested to upgrade the affected component.VulDB Recent EntriesRead More