Security Advisory

CVE-2025-24526

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-02-24 07:23:23

Last updated 2025-02-24 11:24:41

Assigner Mattermost

State PUBLISHED

Description

Mattermost versions 10.1.x <= 10.1.3, 10.4.x <= 10.4.1, 9.11.x <= 9.11.7, 10.3.x <= 10.3.2, 10.2.x <= 10.2.2 fail to restrict channel export of archived channels when the "Allow users to view archived channels" is disabled which allows a user to export channel contents when they shouldnt have access to it

← Browse all CVEs View on cve.org ↗