CVE-2025-24839 LOW

CVE-2025-24839: Unauthorized AI bot activation via Wrangler plugin

Vendor Mattermost

Product Mattermost

Weakness CWE-863 · Incorrect authorization

Published April 16, 2025

Last update April 16, 2025

View on NVD All CVEs

CVSS base score

3.1/10

Attack vector Network

Attack complexity High

Privileges required Low

User interaction None

Confidentiality None

Integrity Low

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N

What the vulnerability does

01Description

Mattermost versions 10.5.x <= 10.5.1, 10.4.x <= 10.4.3, 9.11.x <= 9.11.9 fail to prevent Wrangler posts from triggering AI responses. This vulnerability allows users without access to the AI bot to activate it by attaching the activate_ai override property to a post via the Wrangler plugin, provided both the AI and Wrangler plugins are enabled.

Key dates

02Disclosure timeline

April 16, 2025 CVE published

April 16, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-24839 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/863.html

Related vulnerabilities

Identifiers

CVE CVE-2025-24839

CWE CWE-863

CVSS 3.1 / LOW

Affected versions

Vendor Mattermost

Product Mattermost

Affected ≥ 10.5.0 and ≤ 10.5.1

Vendor Mattermost

Product Mattermost

Affected ≥ 10.4.0 and ≤ 10.4.3

Vendor Mattermost

Product Mattermost

Affected ≥ 9.11.0 and ≤ 9.11.9

CVE-2025-24839: Unauthorized AI bot activation via Wrangler plugin

01Description

02Disclosure timeline

03References

04Related CVE