CVE-2025-9072

HIGH

Mattermost <10.10.1-10.5.9-10.9.4 - Open Redirect

Title source: llm

Description

Mattermost versions 10.10.x <= 10.10.1, 10.5.x <= 10.5.9, 10.9.x <= 10.9.4 fail to validate the redirect_to parameter, allowing an attacker to craft a malicious link that, once a user authenticates with their SAML provider, could post the user’s cookies to an attacker-controlled URL.

References (1)

[Vendor Advisory] https://mattermost.com/security-updates

Scores

CVSS v3 7.6

EPSS 0.0003

EPSS Percentile 8.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-601

Status published

Products (3)

mattermost/mattermost 0 - 8.0.0-20250731063404-9eebaadf8f72Go

mattermost/mattermost-server 10.10.0 - 10.10.2Go

mattermost/mattermost_server 10.5.0 - 10.5.10

Published Sep 15, 2025

Tracked Since Feb 18, 2026