CVE-2026-2476

High CVSS: 7.6

Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which allows an attacker with access to support packets to obtain original plugin settings via exported configuration data. Mattermost Advisory ID: MMSA-2026-00606

Vendor

Mattermost

Product

Ms Teams

CWE

CWE-200

Yayın Tarihi

2026-03-16 14:19:30

Güncelleme

2026-03-20 18:29:11

Source Identifier

responsibledisclosure@mattermost.com

KEV Date Added

Kategoriler

CWE-200 Ms Teams HIGH Mattermost 2026

Referanslar

https://mattermost.com/security-updates

Benzer Kayıtlar

Medium

CVE-2026-3112

Mattermost versions 11.4.x

Medium

CVE-2026-3113

Mattermost versions 11.4.x

Medium

CVE-2026-3114

Mattermost versions 11.4.x

Medium

CVE-2026-3115

Mattermost versions 11.2.x

High

CVE-2026-3108

Mattermost versions 11.2.x

Medium

CVE-2026-4274

Mattermost versions 11.2.x