CVE-2025-31947

Vulnerability Description

Mattermost versions 10.6.x <= 10.6.1, 10.5.x <= 10.5.2, 10.4.x <= 10.4.4, 9.11.x <= 9.11.11 fail to lockout LDAP users following repeated login failures, which allows attackers to lock external LDAP accounts through repeated login failures through Mattermost.

Vulnerability Details

Published Date

May 15, 2025

Last Modified

October 06, 2025

Source

NVD

CVE-2025-31947

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment