Security Advisory

CVE-2026-0999

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-02-16 09:47:45

Last updated 2026-02-17 16:53:07

Assigner Mattermost

State PUBLISHED

Description

Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 fail to properly validate login method restrictions which allows an authenticated user to bypass SSO-only login requirements via userID-based authentication. Mattermost Advisory ID: MMSA-2025-00548

← Browse all CVEs View on cve.org ↗