CVE-2025-27538

CVSS 3.1 Score 2.2 of 10 (low)

Details

Published Apr 16, 2025

CWE ID 306

Summary

CVE-2025-27538 is a vulnerability affecting Mattermost versions 10.5.x up to 10.5.1 and 9.11.x up to 9.11.9. This issue allows users with edit_other_users permission to bypass Multi-Factor Authentication (MFA) checks when attempting to activate or deactivate MFA settings for other users through the PUT /api/v4/users/user-id/mfa endpoint. Even if the targeted user has not set up MFA, an attacker can manipulate the requesting user's identity to perform these actions, potentially compromising the security of other users' accounts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Mattermost Server

Affected Vendors

Mattermost

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/5DW-uV
https://www.cve.org/CVERecord?id=CVE-2025-27538
https://nvd.nist.gov/vuln/detail/CVE-2025-27538

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Predator Still Active, with New Client and Corporate Links Identified

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

Know What Matters

For Customers

For Partners