CVE-2025-9081
19.09.2025, 20:15
Mattermost versions 10.5.x <= 10.5.8, 9.11.x <= 9.11.17 fail to properly validate access controls which allows any authenticated user to download sensitive files via board file download endpoint using UUID enumerationEnginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.
Common Weakness Enumeration
References