Security Advisory

CVE-2025-41436

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-14 08:00:42

Last updated 2025-11-14 15:48:31

Assigner Mattermost

State PUBLISHED

Description

Mattermost versions <11.0 fail to properly enforce the "Allow users to view archived channels" setting which allows regular users to access archived channel content and files via the "Open in Channel" functionality from followed threads

← Browse all CVEs View on cve.org ↗