VDB

CVE-2025-12756

CVE-2025-12756 PUBLISHED CVSS 4.300000190734863 MEDIUM

Mattermost fails to validate user permissions when deleting comments in Boards

EPSS 0.03% · 10.7th percentile

Risk Scores

CVSS v3.1
4.300000190734863
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
EPSS Score
0.03%
10.7th percentile

Affected Products

VendorProductVersions
mattermostmattermost_server10.11.0, 10.12.0, 11.0.0
github.commattermost/mattermost11.0.0, 10.11.0, 10.12.0
MattermostMattermost11.0.3, 10.12.2, 10.11.5
github.commattermost/mattermost/server/v80

Timeline

  • Dec 1, 2025 CVE Published
  • Dec 2, 2025 CVE Updated
  • Dec 2, 2025 EPSS Score
  • Dec 6, 2025 EPSS Score
  • Dec 11, 2025 EPSS Score
  • Dec 15, 2025 EPSS Score
  • Dec 20, 2025 EPSS Score
  • Dec 24, 2025 EPSS Score
  • Dec 28, 2025 EPSS Score
  • Jan 2, 2026 EPSS Score
  • Jan 6, 2026 EPSS Score
  • Jan 11, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›