Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
CVE-2025-55070
CVE-2025-55070
Mattermost versions <11 fail to enforce multi-factor authentication on WebSocket connections which allows unauthenticated users to access sensitive information via WebSocket events
Published Nov 18, 2025
https://github.com/advisories/GHSA-xpg8-8xpv-948p
CVSS Score
High
7.5
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
golang
github.com/mattermost/mattermost-server
v0.0.0-20190506132237-dce6cb601f15
golang
github.com/mattermost/mattermost-server
v0.0.0-20190516103213-2d3e41783398
golang
github.com/mattermost/mattermost-server
v0.0.0-20190519073129-18612bf771d5
golang
github.com/mattermost/mattermost-server
v0.0.0-20190521215115-fe3bad864323
golang
github.com/mattermost/mattermost-server
v0.0.0-20190531122116-acf6437b8169
golang
github.com/mattermost/mattermost-server
v0.0.0-20190603164738-9b275586113e
golang
github.com/mattermost/mattermost-server
v0.0.0-20190610144121-1a7a34b652f6
golang
github.com/mattermost/mattermost-server
v0.0.0-20190626111855-f21a8a370f89
golang
github.com/mattermost/mattermost-server
v0.0.0-20190722172959-9a8b0906fdbf
golang
github.com/mattermost/mattermost-server
v0.0.0-20190809162034-80fc9fff1b99
golang
github.com/mattermost/mattermost-server
v0.0.0-20190911153551-9c3fc4ab9f30
golang
github.com/mattermost/mattermost-server
v0.0.0-20191017141203-48c06e9bce3b
golang
github.com/mattermost/mattermost-server
v0.0.0-20191019085930-e13dad9fd4b6
golang
github.com/mattermost/mattermost-server
v1.4.1-0.20190926112648-af3ffeed1a4a
golang
github.com/mattermost/mattermost-server
v1.4.1-0.20191016162522-6597fdb40134
golang
github.com/mattermost/mattermost-server
v1.4.1-0.20191019082732-b000d2fbfb2a
golang
github.com/mattermost/mattermost-server
v1.4.1-0.20191031155836-533c7bb3e584
golang
github.com/mattermost/mattermost-server
v1.4.1-0.20191121150847-0b00a7870b59
golang
github.com/mattermost/mattermost-server/v5
v5.18.0-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.18.0-rc2
golang
github.com/mattermost/mattermost-server/v5
v5.18.0-rc3
golang
github.com/mattermost/mattermost-server/v5
v5.18.0-rc4
golang
github.com/mattermost/mattermost-server/v5
v5.18.0
golang
github.com/mattermost/mattermost-server/v5
v5.18.1-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.18.1
golang
github.com/mattermost/mattermost-server/v5
v5.18.2-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.18.2
golang
github.com/mattermost/mattermost-server/v5
v5.19.0-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.19.0-rc2
golang
github.com/mattermost/mattermost-server/v5
v5.19.0-rc3
golang
github.com/mattermost/mattermost-server/v5
v5.19.0
golang
github.com/mattermost/mattermost-server/v5
v5.19.1-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.19.1
golang
github.com/mattermost/mattermost-server/v5
v5.19.2
golang
github.com/mattermost/mattermost-server/v5
v5.19.3-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.19.3
golang
github.com/mattermost/mattermost-server/v5
v5.20.0-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.20.0-rc2
golang
github.com/mattermost/mattermost-server/v5
v5.20.0-rc3
golang
github.com/mattermost/mattermost-server/v5
v5.20.0-rc4
golang
github.com/mattermost/mattermost-server/v5
v5.20.0-rc5
golang
github.com/mattermost/mattermost-server/v5
v5.20.0
golang
github.com/mattermost/mattermost-server/v5
v5.20.1-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.20.1
golang
github.com/mattermost/mattermost-server/v5
v5.20.2-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.20.2
golang
github.com/mattermost/mattermost-server/v5
v5.21.0-rc1
golang
github.com/mattermost/mattermost-server/v5
v5.21.0-rc2
golang
github.com/mattermost/mattermost-server/v5
v5.21.0-rc3
golang
github.com/mattermost/mattermost-server/v5
v5.21.0
1-50 of 303
CVE-2025-55070 | Components Impacted | Sonatype Guide | Sonatype Guide
