CVE-2025-49221 — Vulnetix

CVE-2025-49221 PUBLISHED CVSS 3.700000047683716 LOW

Mattermost Confluence Plugin has Missing Authorization vulnerability

EPSS 0.07% · 20.8th percentile

Risk Scores

CVSS 3.1

3.700000047683716

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

EPSS Score

0.07%

20.8th percentile

Affected Products

Vendor	Product	Versions
Mattermost	Mattermost Confluence Plugin	0, 1.5.0
github.com	mattermost/mattermost-plugin-confluence	0
mattermost	confluence	0

Exploit Intelligence

CIRCL seen: CVE-2025-49221 (circl-sighting)
https://mattermost.com/security-updates (circl)

Timeline

Aug 11, 2025 CVE Published
Aug 11, 2025 Coalition ESS Score
Aug 11, 2025 PoC Published
Aug 12, 2025 EPSS Score
Aug 12, 2025 Coalition ESS Score
Aug 20, 2025 EPSS Score
Aug 26, 2025 Coalition ESS Score
Aug 29, 2025 EPSS Score
Sep 6, 2025 EPSS Score
Sep 14, 2025 EPSS Score
Sep 23, 2025 EPSS Score
Oct 1, 2025 EPSS Score

References

Open in Interactive Console →

$ Console Community · 100/wk Open console ›