CVE-2025-31947

🗓️ 15 May 2025 10:41:42Reported by MattermostType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 32 Views

Vulnerable Mattermost versions allow LDAP account lockout via repeated login failures.

Reporter	Title	Published	Views	Family All 19
Circl	CVE-2025-31947	15 May 202511:36	–	circl
CNNVD	Mattermost 安全漏洞	15 May 202500:00	–	cnnvd
CNVD	Mattermost has an unspecified vulnerability	20 May 202500:00	–	cnvd
Cvelist	CVE-2025-31947 Repeated LDAP login failures can lock an LDAP account	15 May 202510:41	–	cvelist
EUVD	EUVD-2025-15150	3 Oct 202520:07	–	euvd
Github Security Blog	Mattermost Fails to Lockout LDAP Users After Repeated Login Failures	15 May 202512:30	–	github
NVD	CVE-2025-31947	15 May 202511:15	–	nvd
OPENSUSE Linux	govulncheck-vulndb-0.0.20250523T151856-1.1 on GA media (moderate)	27 May 202500:00	–	opensuse
OSV	GHSA-QGWX-RFFP-6CX9 Mattermost Fails to Lockout LDAP Users After Repeated Login Failures	15 May 202512:30	–	osv
OSV	GO-2025-3692 Mattermost Fails to Lockout LDAP Users After Repeated Login Failures in github.com/mattermost/mattermost-server	23 May 202515:17	–	osv

NVD

Node

mattermost mattermost_serverRange9.11.0–9.11.12

mattermost mattermost_serverRange10.4.0–10.4.5

mattermost mattermost_serverRange10.5.0–10.5.3

mattermost mattermost_serverRange10.6.0–10.6.2

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "10.6.1",
        "status": "affected",
        "version": "10.6.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.5.2",
        "status": "affected",
        "version": "10.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.4.4",
        "status": "affected",
        "version": "10.4.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.11.11",
        "status": "affected",
        "version": "9.11.0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "10.7.0"
      },
      {
        "status": "unaffected",
        "version": "10.6.2"
      },
      {
        "status": "unaffected",
        "version": "10.5.3"
      },
      {
        "status": "unaffected",
        "version": "10.4.5"
      },
      {
        "status": "unaffected",
        "version": "9.11.12"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

06 Oct 2025 15:30Current

7.1High risk

Vulners AI Score7.1

CVSS 3.15.3 - 5.8

EPSS0.0036

SSVC

CWE-645