CVE-2025-46702

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-46702
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46702.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-46702
Aliases
Published
2025-06-30T17:15:32.600Z
Modified
2026-03-13T03:24:46.585857Z
Severity
  • 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator
Summary
[none]
Details

Mattermost versions 10.5.x <= 10.5.5, 9.11.x <= 9.11.15, 10.8.x <= 10.8.0, 10.7.x <= 10.7.2, 10.6.x <= 10.6.5 fail to properly enforce channel member management permissions when adding participants to playbook runs. This allows authenticated users with member-level permissions to bypass system admin restrictions and add or remove users to/from private channels via the playbook run participants feature, even when the 'Manage Members' permission has been explicitly removed. This can lead to unauthorized access to sensitive channel content and allow guest users to gain channel management privileges.

References

Affected packages

Git / github.com/mattermost/mattermost-server

Affected ranges

Type
GIT
Repo
https://github.com/mattermost/mattermost-server
Events
Introduced
0bc2ddd42375a75ab14e63f038165150d4f07659
Fixed
96fdd2b677f28d1375df8dfa88bbc519f32bb3b6
Introduced
58bd34fd34cbd7d3da777d627b6cffdf8a532930
Fixed
2c4a9f9d49d9a6aa94b073e8871ff67e95f8984e
Introduced
5eebc77b68c0c2b63103316e3c92342c13fd93f9
Fixed
303cb88e93f0426657feb473b323d9e22dc0e43c
Introduced
f6b324a9d71843e8f48eba9e90dfbeabcbac1ae7
Fixed
5521da96cf8e84ff3f249ff0e3599d131c05e850
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bb105f3a2785636ad53b2d0bf4027900d41f6a67
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a68d1e8e0e02dc7953e68876d1c7adcaa4540bae
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
b310742ad7ce8492533bdc764126a44c315ff7d6
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bb105f3a2785636ad53b2d0bf4027900d41f6a67
Database specific 
{
    "versions": [
        {
            "introduced": "9.11.0"
        },
        {
            "fixed": "9.11.16"
        },
        {
            "introduced": "10.5.0"
        },
        {
            "fixed": "10.5.6"
        },
        {
            "introduced": "10.6.0"
        },
        {
            "fixed": "10.6.6"
        },
        {
            "introduced": "10.7.0"
        },
        {
            "fixed": "10.7.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.8.0-NA"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.8.0-rc1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.8.0-rc2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "10.8.0-rc3"
        }
    ]
}

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-46702.json"