Mattermost Calls Configuration Reporting Vulnerability in Versions 10.x through 10.2

Vulnerability

A vulnerability exists in Mattermost versions 10.x through 10.2, where the application fails to accurately represent missing settings. This discrepancy can lead to confusion for administrators regarding the security-sensitive configuration of Calls, due to misleading information in the user interface.

Impact

This vulnerability can cause administrative confusion about the security settings related to Calls, potentially leading to misconfigurations.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

3.1

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mattermost Calls Configuration Reporting Vulnerability in Versions 10.x through 10.2

Vulnerability

Impact

Affected Products

Mattermost

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating