CVE-2025-14435

Medium CVSS: 6.8

Mattermost versions 10.11.x <= 10.11.8, 11.1.x <= 11.1.1, 11.0.x <= 11.0.6 fail to prevent infinite re-renders on API errors which allows authenticated users to cause application-level DoS via triggering unbounded component re-render loops.

Vendor

Mattermost

Product

Mattermost Server

CWE

CWE-770

Yayın Tarihi

2026-01-16 12:15:49

Güncelleme

2026-01-20 15:06:30

Source Identifier

responsibledisclosure@mattermost.com

KEV Date Added

Kategoriler

CWE-770 Mattermost Server MEDIUM Mattermost 2026

Referanslar

https://mattermost.com/security-updates

Benzer Kayıtlar

Medium

CVE-2026-3112

Mattermost versions 11.4.x

Medium

CVE-2026-3113

Mattermost versions 11.4.x

Medium

CVE-2026-3114

Mattermost versions 11.4.x

Medium

CVE-2026-3115

Mattermost versions 11.2.x

High

CVE-2026-3108

Mattermost versions 11.2.x

Medium

CVE-2026-4274

Mattermost versions 11.2.x