ГлавнаяУязвимости → CVE-2025-54525
7.5высокая

CVE-2025-54525

Описание

Mattermost Confluence Plugin version <1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to create channel subscription endpoint with an invalid request body.

Затрагиваемое ПО
Mattermost Confluence
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://mattermost.com/security-updates