CVE-2025-13523 — HIGH (7.7)

Q: How severe is CVE-2025-13523?

CVE-2025-13523 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-13523?

Check the references section above for vendor advisories and patch information. Affected products include: Mattermost Confluence.

Vulnerability Description

Mattermost Confluence plugin version <1.7.0 fails to properly escape user-controlled display names in HTML template rendering which allows authenticated Confluence users with malicious display names to execute arbitrary JavaScript in victim browsers via sending a specially crafted OAuth2 connection link that, when visited, renders the attacker's display name without proper sanitization. Mattermost Advisory ID: MMSA-2025-00557

CVSS Score

7.7

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Mattermost	Confluence	>= 1.0.0, < 1.7.0

Related Weaknesses (CWE)

CWE-79

References

https://mattermost.com/security-updatesVendor Advisory

FAQ

What is CVE-2025-13523?

CVE-2025-13523 is a vulnerability with a CVSS score of 7.7 (HIGH). Mattermost Confluence plugin version <1.7.0 fails to properly escape user-controlled display names in HTML template rendering which allows authenticated Confluence users with malicious display names t...

How severe is CVE-2025-13523?

CVE-2025-13523 has been rated HIGH with a CVSS base score of 7.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-13523?

Check the references section above for vendor advisories and patch information. Affected products include: Mattermost Confluence.