Incorrect Implementation of Authentication Algorithm in github.com/mattermost/mattermost/server/channels/store/retrylayer | CVE-2025-12421

Q: How to fix?

Upgrade github.com/mattermost/mattermost/server/channels/store/retrylayer to version 10.5.13, 10.11.5, 10.12.2, 11.0.3 or higher.

Introduced: 27 Nov 2025

NewCVE-2025-12421 (opens in a new tab) CWE-303 (opens in a new tab)

How to fix?

Upgrade github.com/mattermost/mattermost/server/channels/store/retrylayer to version 10.5.13, 10.11.5, 10.12.2, 11.0.3 or higher.

Overview

Affected versions of this package are vulnerable to Incorrect Implementation of Authentication Algorithm. An attacker can gain unauthorized access to another user's account by leveraging a specially crafted email address when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint.

Note:

This is only exploitable if the ExperimentalEnableAuthenticationTransfer setting is enabled and the RequireEmailVerification setting is disabled.

References

GitHub Commit

CVSS Base Scores

version 4.0

version 3.1

Attack Vector (AV)
Network
Attack Complexity (AC)
Low
Attack Requirements (AT)
Present
Privileges Required (PR)
Low
User Interaction (UI)
None

Confidentiality (VC)
High
Integrity (VI)
High
Availability (VA)
High

Confidentiality (SC)
High
Integrity (SI)
High
Availability (SA)
High

Incorrect Implementation of Authentication Algorithm Affecting github.com/mattermost/mattermost/server/channels/store/retrylayer package, versions >=10.5.0 <10.5.13>=10.11.0 <10.11.5>=10.12.0 <10.12.2>=11.0.0-alpha.1 <11.0.3

Severity

Do your applications use this vulnerable package?

Introduced: 27 Nov 2025

How to fix?

Overview

References

CVSS Base Scores

Snyk