CVE-2025-6233

🗓️ 18 Jul 2025 09:09:22Reported by MattermostType

CVE-2025-6233 allows system admin to read arbitrary files via path traversal in Mattermost versions

Reporter	Title	Published	Views	Family All 17
Circl	CVE-2025-6233	18 Jul 202512:29	–	circl
CNNVD	Mattermost 安全漏洞	18 Jul 202500:00	–	cnnvd
Cvelist	CVE-2025-6233 Arbitrary file read by system admin via path traversal	18 Jul 202509:09	–	cvelist
EUVD	EUVD-2025-21866	3 Oct 202520:07	–	euvd
Github Security Blog	Mattermost Path Traversal vulnerability	18 Jul 202512:30	–	github
Tenable Nessus	Mattermost Server 9.11.x < 9.11.17 / 10.5.x < 10.5.7 / 10.7.x < 10.7.4 / 10.8.x < 10.8.2 (MMSA-2025-00494)	24 Jul 202500:00	–	nessus
NVD	CVE-2025-6233	18 Jul 202510:15	–	nvd
OSV	GHSA-WVW2-3JH4-4C39 Mattermost Path Traversal vulnerability	18 Jul 202512:30	–	osv
OSV	GO-2025-3820 Mattermost Path Traversal vulnerability in github.com/mattermost/mattermost-server	29 Jul 202518:49	–	osv
OSV	OPENSUSE-SU-2025:15405-1 govulncheck-vulndb-0.0.20250730T213748-1.1 on GA media	4 Aug 202500:00	–	osv

NVD

Node

mattermost mattermost_serverRange9.11.0–9.11.17

mattermost mattermost_serverRange10.5.0–10.5.8

mattermost mattermost_serverRange10.7.0–10.7.4

mattermost mattermost_serverRange10.8.0–10.8.2

[
  {
    "defaultStatus": "unaffected",
    "product": "Mattermost",
    "vendor": "Mattermost",
    "versions": [
      {
        "lessThanOrEqual": "10.8.1",
        "status": "affected",
        "version": "10.8.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.7.3",
        "status": "affected",
        "version": "10.7.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "10.5.7",
        "status": "affected",
        "version": "10.5.0",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "9.11.16",
        "status": "affected",
        "version": "9.11.0",
        "versionType": "semver"
      },
      {
        "version": "10.9.0",
        "status": "unaffected"
      },
      {
        "version": "10.8.2",
        "status": "unaffected"
      },
      {
        "version": "10.7.4",
        "status": "unaffected"
      },
      {
        "version": "10.5.8",
        "status": "unaffected"
      },
      {
        "version": "9.11.17",
        "status": "unaffected"
      }
    ]
  }
]

Source	Link
mattermost	www.mattermost.com/security-updates

17 Jun 2026 10:01Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.14.9 - 6.8

EPSS0.0038

SSVC

CWE-22