CVE-2025-12419

Name of the Vulnerable Software and Affected Versions Mattermost versions 10.5.x through 10.12.1 Mattermost versions 10.11.x through 10.11.4 Mattermost versions 11.0.x through 11.0.3

Description Mattermost fails to properly validate OAuth state tokens during OpenID Connect authentication. This allows an authenticated attacker with team creation privileges to take over a user account by manipulating authentication data during the OAuth completion flow. This requires email verification to be disabled and OAuth/OpenID Connect to be enabled. The attacker must control two users in the SSO system, with one of them never having logged into Mattermost. The issue enables privileged users to hijack accounts by manipulating authentication data.

Recommendations Update Mattermost versions prior to 10.12.2 Update Mattermost versions prior to 10.11.5 Update Mattermost versions prior to 11.0.4 Update Mattermost versions prior to 10.5.13