CVE-2025-12689 | Mattermost up to 10.11.6/10.12.2/11.0.4 WebSocket Request Field improper validation of specified type of input

A vulnerability described as problematic has been identified in Mattermost up to 10.11.6/10.12.2/11.0.4. This affects an unknown part of the component WebSocket Request Field Handler. The manipulation results in improper validation of specified type of input.

This vulnerability is known as CVE-2025-12689. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.VulDB Recent EntriesRead More